Feature/tlsauth #301
Merged
Feature/tlsauth #301
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…treamnative#187) fix: update the PulsarTopic doc Signed-off-by: ericsyh <[email protected]>
* improve log * improve * fix lint * comment * Update pkg/connection/reconciler.go Co-authored-by: Max Xu <[email protected]> * fix go build --------- Co-authored-by: Max Xu <[email protected]>
Signed-off-by: ericsyh <[email protected]>
* update pulsar-client-go lib Signed-off-by: ericsyh <[email protected]> * update dockerfile Signed-off-by: ericsyh <[email protected]> * fix the go mod Signed-off-by: ericsyh <[email protected]> --------- Signed-off-by: ericsyh <[email protected]>
Signed-off-by: ericsyh <[email protected]>
Signed-off-by: ericsyh <[email protected]>
Signed-off-by: ericsyh <[email protected]>
* update resource operator chart Signed-off-by: ericsyh <[email protected]> * fix lint Signed-off-by: ericsyh <[email protected]> * update Signed-off-by: ericsyh <[email protected]> * update k8s test Signed-off-by: ericsyh <[email protected]> * update appversion Signed-off-by: ericsyh <[email protected]> * update the chart version Signed-off-by: ericsyh <[email protected]> --------- Signed-off-by: ericsyh <[email protected]>
* fix: add olm required labels Signed-off-by: ericsyh <[email protected]> * update gitignore Signed-off-by: ericsyh <[email protected]> * update csv Signed-off-by: ericsyh <[email protected]> --------- Signed-off-by: ericsyh <[email protected]>
Signed-off-by: ericsyh <[email protected]>
Signed-off-by: ericsyh <[email protected]>
Signed-off-by: ericsyh <[email protected]>
…treamnative#194) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.17.0 to 0.23.0. - [Commits](golang/net@v0.17.0...v0.23.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Matteo Merli <[email protected]>
…e#193) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.17.0 to 0.23.0. - [Commits](golang/net@v0.17.0...v0.23.0)
* add crd for pulsar package & function & connector * add controllers * add tests * Update api/v1alpha1/zz_generated.deepcopy.go Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> * fix ci * fix lint * fix build * fix build * fix test * fix lint * fix golint * fix install * add to charts * fix role * fix controller * fix controller * fix package * remove package test * fix ci * fix * use functions worker * revert * fix admin cli * fix * fix charts * fix license * fix client version * fix * skip function package * fix reconcile * fix ci * fix * fix pulsar * fix rep * fix url * fix tab * fix * cleanup proxy * fix container name * fix builtin * fix connectors * use pulsar-all * docker hub login * fix pulsarctl * fix narExtractionDirectory * timeout * fix name * add docs * fix license * fix chart role * fix * fix license and lint * fix lint --------- Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Neng Lu <[email protected]>
* chore: upgrade chart and change the image registry Signed-off-by: ericsyh <[email protected]> * update to use the 0.4.12 Signed-off-by: ericsyh <[email protected]> --------- Signed-off-by: ericsyh <[email protected]>
…treamnative#216) fix the reconcile order
* fix: olm release CI bug Signed-off-by: ericsyh <[email protected]> * add a test job Signed-off-by: ericsyh <[email protected]> * add dependency Signed-off-by: ericsyh <[email protected]> * remove test job Signed-off-by: ericsyh <[email protected]> --------- Signed-off-by: ericsyh <[email protected]>
streamnative#219) * fix function reconcile uses incorrect status to check if update or not * fix ci to cleanup * fix style * fix * fix cleanup
* mark the configs optional for function * fix CryptoConfig * revert chart Changes
* release helm chart 0.5.1 # Conflicts: # charts/pulsar-resources-operator/Chart.yaml # charts/pulsar-resources-operator/tests/deployment_test.yaml * fix lint # Conflicts: # charts/pulsar-resources-operator/tests/deployment_test.yaml * bump to 0.5.2 * fix header
* remove the kube-rbac-proxy Signed-off-by: ericsyh <[email protected]> * update the test Signed-off-by: ericsyh <[email protected]> * fix ci Signed-off-by: ericsyh <[email protected]> --------- Signed-off-by: ericsyh <[email protected]>
fix makefile gen path and noused dep
…ive#287) * allow using file:// to manage packages * add cloud storage support * fix ci * go mod tidy * fix mod * fix ci * fix ci * fix path parser * fix package * sync charts * fix lint * fix ci * fix lint
use go1.22.12
Update Chart.yaml and README.md to reflect the new pre-release version, preparing for the next iteration of the Pulsar Resources Operator chart.
fix preflight
# Conflicts: # api/v1alpha1/common.go # config/crd/bases/resource.streamnative.io_pulsarconnections.yaml # docs/pulsar_connection.md # pkg/admin/interface.go
Contributor
|
@ThomasVerhoeven1998:Thanks for your contribution. For this PR, do we need to update docs? |
github-actions
bot
added
doc-info-missing
Contributor
|
@ThomasVerhoeven1998:Thanks for providing doc info! |
Member
|
@freeznet Please review |
freeznet
reviewed
Apr 11, 2025
Member
freeznet
left a comment
freeznet
left a comment
There was a problem hiding this comment.
The changes lgtm, but could you please add the changes to helm charts as well, to address the Extend the Helm chart to support volumes and volumeMounts, so users can mount TLS certificates into the operator. part?
Contributor
Author
Member
|
@ThomasVerhoeven1998 could you please rebase the master so we could make the e2e ready to use? i have created #306 to fix the ci failure from forked repo's PR. |
Contributor
Author
Rebase done |
lhotari
approved these changes
Apr 16, 2025
Member
lhotari
left a comment
lhotari
left a comment
There was a problem hiding this comment.
LGTM, good work @ThomasVerhoeven1998
Contributor
Author
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
10 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes streamnative/pulsar-resources-operator#108
Motivation
As described in the linked issue, we want to support TLS authentication in the Pulsar Resources Operator, which is already supported by Pulsar itself. This improves security and flexibility for Pulsar deployments that require encrypted and authenticated connections.
Modifications
This PR includes the following changes:
adminServiceSecureURLandbrokerServiceSecureURL). Previously, it was mandatory to configureadminServiceURL.allowInsecureConnectionvolumesandvolumeMounts, so users can mount TLS certificates into the operator.Verifying this change
This change is not yet covered by tests.
End-to-end (e2e) tests would be most appropriate here. However, I currently don’t have access to a full GitHub Actions setup with a TLS-enabled Pulsar broker. I suggest we add a new e2e test that:
I’d be happy to collaborate on this if another contributor with access to the test infrastructure can help set up the environment.
Documentation
doc– This PR includes changes that will require corresponding documentation updates, such as usage examples for the new TLS fields and Helm chart enhancements.