Loading...

XML

Word

Printable

Type: Epic
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: AMQ 7.10.0.GA
Component/s: operator, security
Labels:
None

Epic Name:
Operator control plane
Blocked:
False
Blocked Reason:
None
Ready:
False
Affects:

User Experience
Epic Status:
To Do
Hierarchy Progress Bar:

27% To Do, 55% In Progress, 18% Done
Target Release:

AMQ 8.0.0.OPR.1.GA

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Currently the artemis operator uses jmx and cluster connections with plain credentials. these are uses for admin and for moving messages, jobs of the control plane.

If a user wants to own auth, or if auth is delegated. The operator credentials need to be managed by the user. this is bad news.

The operator should use a service account credential to authencicate to the broker, possibly only through a read only view of the jolokia agent... and for inter broker comms (cluster or federation) use mTLS with a service account.

incorporates

ENTMQBR-9266 Manage an empty management.xml with the AMQ Broker Operator

Backlog

relates to

ENTMQBR-8166 Self-signed certificate with UseClientAuth=true prevents communication of Operator with Jolokia

Backlog

Assignee:: Gary Tully

Reporter:: Gary Tully

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2022/09/30 9:41 AM

Updated:: 2024/10/15 3:01 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates