What's the best way to disable anonymous access?

[hapatrick]

I found if I deploy a broker with a very simple manifest like below, it enables anonymous access (it creates a login.config with GuestLoginModule):

apiVersion: broker.amq.io/v1beta1
kind: ActiveMQArtemis
metadata:
  name: artemis-broker-simple

I have added an override login.config like in the example below, and that gets rid of anonymous access.

apiVersion: broker.amq.io/v1beta1
kind: ActiveMQArtemis
metadata:
  name: artemis-broker
spec:
  deploymentPlan:
    size: 1
    extraMounts:
      secrets:
      - broker-jaas-config
---
apiVersion: v1
kind: Secret
metadata:
  name: broker-jaas-config
type: Opaque
stringData:
  login.config: |
    activemq {
        // ensure the operator can connect to the broker by referencing the existing properties config
        org.apache.activemq.artemis.spi.core.security.jaas.PropertiesLoginModule sufficient
            org.apache.activemq.jaas.properties.user="artemis-users.properties"
            org.apache.activemq.jaas.properties.role="artemis-roles.properties"
            baseDir="/home/jboss/amq-broker/etc";
    };

This seems a little long-winded just to disable anonymous access. Is there a simpler way that I'm missing?

[brusdev]

You need to set the field spec.deploymentPlan.requireLogin to true to disable the anonymous access, i.e.

apiVersion: broker.amq.io/v1beta1
kind: ActiveMQArtemis
metadata:
  name: artemis-broker
spec:
  deploymentPlan:
    requireLogin: true

[hapatrick]

Thanks, can't believe I missed that.