Uploaded image for project: 'AMQ Broker'
  1. AMQ Broker
  2. ENTMQBR-7447

KeycloakLoginModule's configuration credentials should have an option to store the client-secret in an Openshift secret.

    XMLWordPrintable

Details

    Description

      Currently, the client-secret is visible in plaintext in the ActiveMQArtemisSecurity CR:

       

      apiVersion: broker.amq.io/v1beta1
kind: ActiveMQArtemisSecurity
metadata:
  name: ex-keycloak
spec:
  loginModules:
    keycloakLoginModules:
    - name: 'keycloak-broker'
      configuration:
        credentials:
        - key: 'secret'
          value: '9699685c-8a30-45cf-bf19-0d38bbac5fdc'

       

      There should also be an option to store this in an Openshift secret and refer to that secret here.

      Attachments

        Issue Links

          is incorporated by

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. ENTMQBR-7128 Avoid application restart upon user management (security) updates

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. ENTMQBR-7525 Support JAAS config via extra mount config map reference

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. ENTMQBR-7545 [Docs] Support JAAS config via extra mount config map reference

          • Undefined - Priority not specified.
          • Closed

          Activity

            People

              gtully@redhat.com Gary Tully
              rhn-support-adongre Avinash Dongre
              Michal Toth Michal Toth
              Votes:
              1 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: