-
Epic
-
Resolution: Unresolved
-
Undefined
-
None
-
AMQ 7.10.0.GA
-
None
-
Operator control plane
-
False
-
None
-
False
-
User Experience
-
To Do
-
9
-
9%
Currently the artemis operator uses jmx and cluster connections with plain credentials. these are uses for admin and for moving messages, jobs of the control plane.
If a user wants to own auth, or if auth is delegated. The operator credentials need to be managed by the user. this is bad news.
The operator should use a service account credential to authencicate to the broker, possibly only through a read only view of the jolokia agent... and for inter broker comms (cluster or federation) use mTLS with a service account.
- relates to
-
ENTMQBR-8166 Self-signed certificate with UseClientAuth=true prevents communication of Operator with Jolokia
- Backlog