Strona główna Odkrywaj Pomoc
Zaloguj się
cecf
/
deploy
5
0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Gałąź: master
Gałęzie Tagi
deploy
/
data
/
kafka
/
templates
/
jaas-secret.yaml

jaas-secret.yaml 4.1 KB
Bezpośredni odnośnik Historia Czysty

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. 

  2. {{- $port := print .Values.service.ports.client }}
    3. 

  3. {{- $host := list }}
    4. 

  4. {{- $bootstrapServers := list }}
    5. 

  5. {{- range $i, $e := until (int .Values.replicaCount) }}
    6. 

  6.   {{- $broker := printf "%s-%s.%s-headless.%s.svc.%s" (include "common.names.fullname" $) (print $i) (include "common.names.fullname" $) $.Release.Namespace $.Values.clusterDomain }}
    7. 

  7.   {{- $host = append $host $broker }}
    8. 

  8.   {{- $bootstrapServers = append $bootstrapServers (printf "%s:%s" $broker $port) }}
    9. 

  9. {{- end }}
    10. 

  10. {{- $clientUsers := .Values.auth.sasl.jaas.clientUsers }}
    11. 

  11. {{- $clientPasswords := .Values.auth.sasl.jaas.clientPasswords }}
    12. 

  12. {{- if not $clientPasswords }}
    13. 

  13.   {{- $clientPasswords = list }}
    14. 

  14. {{- range $clientUsers }}
    15. 

  15.   {{- $clientPasswords = append $clientPasswords (randAlphaNum 10) }}
    16. 

  16. {{- end }}
    17. 

  17. {{- end }}
    18. 

  18. {{- if (include "kafka.createJaasSecret" .) }}
    19. 

  19. apiVersion: v1
    20. 

  20. kind: Secret
    21. 

  21. metadata:
    22. 

  22.   name: {{ printf "%s-jaas" (include "common.names.fullname" .) }}
    23. 

  23.   namespace: {{ .Release.Namespace | quote }}
    24. 

  24.   labels: {{- include "common.labels.standard" . | nindent 4 }}
    25. 

  25.     {{- if .Values.commonLabels }}
    26. 

  26.     {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
    27. 

  27.     {{- end }}
    28. 

  28.   {{- if .Values.commonAnnotations }}
    29. 

  29.   annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
    30. 

  30.   {{- end }}
    31. 

  31. type: Opaque
    32. 

  32. data:
    33. 

  33.   {{- if (include "kafka.client.saslAuthentication" .) }}
    34. 

  34.   client-passwords: {{ join "," $clientPasswords | b64enc | quote }}
    35. 

  35.   system-user-password: {{ index $clientPasswords 0 | b64enc | quote }}
    36. 

  36.   {{- end }}
    37. 

  37.   {{- $zookeeperUser := .Values.auth.sasl.jaas.zookeeperUser }}
    38. 

  38.   {{- if and .Values.zookeeper.auth.client.enabled $zookeeperUser }}
    39. 

  39.   {{- $zookeeperPassword := .Values.auth.sasl.jaas.zookeeperPassword }}
    40. 

  40.   zookeeper-password: {{ default (randAlphaNum 10) $zookeeperPassword | b64enc | quote }}
    41. 

  41.   {{- end }}
    42. 

  42.   {{- if (include "kafka.interBroker.saslAuthentication" .) }}
    43. 

  43.   {{- $interBrokerPassword := .Values.auth.sasl.jaas.interBrokerPassword }}
    44. 

  44.   inter-broker-password: {{ default (randAlphaNum 10) $interBrokerPassword | b64enc | quote }}
    45. 

  45.   {{- end }}
    46. 

  46. {{- end }}
    47. 

  47. {{- if .Values.serviceBindings.enabled }}
    48. 

  48. {{- if (include "kafka.client.saslAuthentication" .) }}
    49. 

  49. {{- range $i, $e := until (len $clientUsers) }}
    50. 

  50. ---
    51. 

  51. apiVersion: v1
    52. 

  52. kind: Secret
    53. 

  53. metadata:
    54. 

  54.   name: {{ include "common.names.fullname" $ }}-svcbind-user-{{ $i }}
    55. 

  55.   namespace: {{ $.Release.Namespace | quote }}
    56. 

  56.   labels: {{- include "common.labels.standard" $ | nindent 4 }}
    57. 

  57.     {{- if $.Values.commonLabels }}
    58. 

  58.     {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
    59. 

  59.     {{- end }}
    60. 

  60.   {{- if $.Values.commonAnnotations }}
    61. 

  61.   annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
    62. 

  62.   {{- end }}
    63. 

  63. type: servicebinding.io/kafka
    64. 

  64. data:
    65. 

  65.   provider: {{ print "bitnami" | b64enc | quote }}
    66. 

  66.   type: {{ print "kafka" | b64enc | quote }}
    67. 

  67.   user: {{ index $clientUsers $i | b64enc | quote }}
    68. 

  68.   password: {{ index $clientPasswords $i | b64enc | quote }}
    69. 

  69.   host: {{ join "," $host | b64enc | quote }}
    70. 

  70.   port: {{ print $port | b64enc | quote }}
    71. 

  71.   bootstrap-servers: {{ join "," $bootstrapServers | b64enc | quote }}
    72. 

  72. {{- end }}
    73. 

  73. {{- else }}
    74. 

  74. ---
    75. 

  75. apiVersion: v1
    76. 

  76. kind: Secret
    77. 

  77. metadata:
    78. 

  78.   name: {{ include "common.names.fullname" . }}-svcbind
    79. 

  79.   namespace: {{ .Release.Namespace | quote }}
    80. 

  80.   labels: {{- include "common.labels.standard" . | nindent 4 }}
    81. 

  81.     {{- if .Values.commonLabels }}
    82. 

  82.     {{- include "common.tplvalues.render" ( dict "value" .Values.commonLabels "context" $ ) | nindent 4 }}
    83. 

  83.     {{- end }}
    84. 

  84.   {{- if .Values.commonAnnotations }}
    85. 

  85.   annotations: {{- include "common.tplvalues.render" ( dict "value" .Values.commonAnnotations "context" $ ) | nindent 4 }}
    86. 

  86.   {{- end }}
    87. 

  87. type: servicebinding.io/kafka
    88. 

  88. data:
    89. 

  89.   provider: {{ print "bitnami" | b64enc | quote }}
    90. 

  90.   type: {{ print "kafka" | b64enc | quote }}
    91. 

  91.   host: {{ join "," $host | b64enc | quote }}
    92. 

  92.   port: {{ print $port | b64enc | quote }}
    93. 

  93.   bootstrap-servers: {{ join "," $bootstrapServers | b64enc | quote }}
    94. 

  94. {{- end }}
    95. 

  95. {{- end }}
    96.