Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ANSIENG-4245] | scram support in kraft (#49) #1795

Open
wants to merge 25 commits into
base: 7.8.x
Choose a base branch
from
Open

[ANSIENG-4245] | scram support in kraft (#49) #1795

wants to merge 25 commits into from
+516 −31

Conversation

mansi-jain-1206
Copy link
Contributor

@mansi-jain-1206 mansi-jain-1206 commented Sep 27, 2024
edited
Loading

Description

This PR adds a capability for SCRAM authentication with Kraft Controller.
SCRAM authentication 1-pager

Type of change

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update

How Has This Been Tested?

Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration

Checklist:

  • Any variable/code changes have been validated to be backwards compatible (doesn't break upgrade)
  • I have added tests that prove my fix is effective or that my feature works
  • If required, I have ensured the changes can be discovered by cp-ansible discovery codebase
  • My code follows the style guidelines of this project
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • My changes generate no new warnings
  • Any dependent changes have been merged and published in downstream modules

@mansi-jain-1206
[ANSIENG-4245] | poc for scram in kraft (#49)
259581a 
* [ANSIENG-4245] | poc for kraft

* [ANSIENG-4245] | bug fix

* [ANSIENG-4245] | add new line

* [ANSIENG-4245] | run only for admin
@mansi-jain-1206 mansi-jain-1206 requested a review from a team as a code owner September 27, 2024 09:00
@confluent-cla-assistant
Copy link

🎉 All Contributor License Agreements have been signed. Ready to merge.
Please push an empty commit if you would like to re-run the checks to verify CLA status for all contributors.

@mansi-jain-1206
Scram kraft ansieng 4245 (#58)
183951b 
* [ANSIENG-4245] | poc for kraft

* [ANSIENG-4245] | bug fix

* [ANSIENG-4245] | add new line

* [ANSIENG-4245] | run only for admin

* [ANSIENG-4245] | add scram 256

* [ANSIENG-4245] | add new line

* [ANSIENG-4245] | code fix

* [ANSIENG-4245] | added scram test

* [ANSIENG-4245] | added scram test and validation

* [ANSIENG-4245] | added scram test prepare file

* [ANSIENG-4245] | message update

* [ANSIENG-4245] | update existing tests

* [ANSIENG-4245] | update existing tests

* [ANSIENG-4245] | update existing tests

* [ANSIENG-4245] | test fix

* [ANSIENG-4245] | code fix

* [ANSIENG-4245] | code fix

* [ANSIENG-4245] | code fix
@mansi-jain-1206
[ANSIENG-4245] | added more test
f970a44
@mansi-jain-1206
[ANSIENG-4245] | added more test
599a00f
@mansi-jain-1206
[ANSIENG-4245] | added sample inventory file
b47eceb
@mansi-jain-1206
[ANSIENG-4245] | added sample inventory file
0bccff5
@mansi-jain-1206
[ANSIENG-4245] | add eol
65bb151
@mansi-jain-1206
[ANSIENG-4245] | modified message
03d870a
@mansi-jain-1206
[ANSIENG-4245] | modified message
d1b3b84
mansisinha
mansisinha reviewed Oct 23, 2024
View reviewed changes
docs/sample_inventories/scram_kraft.yml Outdated
kafka_controller:
vars:
## Option 2
kafka_controller_sasl_protocol: plain,scram
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please create 2 separate inventory files for these cases instead of adding 2 options here. I think we can also ignore this one and recommend adding in all for simplicity

@mansisinha
Copy link
Member

Added some comments, other than those, Please update the molecule scenarios to cover different combinations, the same combination of broker sasl scram and controller sasl plain,scram is added in every scenario. Please add a scenario with kerberos,scram and one with broker also having multiple sasl protocol

@mansisinha
Copy link
Member

adding to the above, is zk to kraft migration working for the scram scenarios?

@mansi-jain-1206 mansi-jain-1206 changed the title [ANSIENG-4245] | poc for scram in kraft (#49) [ANSIENG-4245] | scram support in kraft (#49) Oct 23, 2024
@mansi-jain-1206
Copy link
Contributor Author

Zk to Kraft migration is working and test for the same has been added.

@mansisinha
Copy link
Member

Suggested a couple of minor changes, also please rename the sample inventory files to a more descriptive name, something like inter-broker_scram_kraft.yml and controller-broker_scram_kraft.yaml

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mansisinha mansisinha mansisinha approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mansi-jain-1206 @mansisinha