Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Support "Copper Argos" with Athenz authentication for pulsar #2881

Merged
merged 2 commits into from
Oct 30, 2023
Merged

feat: Support "Copper Argos" with Athenz authentication for pulsar #2881

merged 2 commits into from
Oct 30, 2023

Conversation

yhino
Copy link
Contributor

@yhino yhino commented Oct 25, 2023
edited
Loading

Checklist:

Motivation

Support the use of Copper Argos with Athenz authentication for Pulsar.

Copper Argos is available at github.com/apache/[email protected] or later.

Modification

Copper Argos provides for an Agent running on an instance to generate a key pair and authenticate using an x509 certificate issued by Athenz.
It will not register the key pair in the Kubernetes Secret.

Modify to handle Athenz authentication settings if AuthAthenzSecret is not given.

Example Configuration

apiVersion: argoproj.io/v1alpha1
kind: EventSource
metadata:
  name: pulsar
spec:
  ...
  pulsar:
    example:
      url: pulsar+ssl://broker.example.com:6651
      topics:
        - persistent://example/example-ns/example-topic
      type: exclusive
      authAthenzParams:
        providerDomain: pulsar.test.provider
        x509CertChain: file:///generated/path/to/service.crt
        privateKey: file:///generated/path/to/private.key
        caCert: file:///etc/ssl/certs/ca-certificates.crt

ref: apache/pulsar-client-go#960

@yhino yhino force-pushed the support-pulsar-copperargos branch from 82e89f4 to b5f343e Compare October 25, 2023 03:24
@yhino yhino marked this pull request as ready for review October 25, 2023 06:05
@whynowy whynowy merged commit c046948 into argoproj:master Oct 30, 2023
8 checks passed
@yhino yhino deleted the support-pulsar-copperargos branch October 30, 2023 06:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@whynowy whynowy whynowy approved these changes

@VaibhavPage VaibhavPage Awaiting requested review from VaibhavPage

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@yhino @whynowy