[GitHub] [pinot] xiangfu0 opened a new pull request, #8816: Adding acl support for helm chart

Wed, 01 Jun 2022 16:18:22 -0700 


xiangfu0 opened a new pull request, #8816:
URL: https://github.com/apache/pinot/pull/8816

   Adding ACL support in helmChart.
   
   helmChart values.yaml section:
   ```
   pinotAuth:
     enabled: true
     controllerFactoryClass: 
org.apache.pinot.controller.api.access.BasicAuthAccessControlFactory
     brokerFactoryClass: 
org.apache.pinot.broker.broker.BasicAuthAccessControlFactory
     configs:
       - access.control.principals=admin,user
       - access.control.principals.admin.password=verysecret
       - access.control.principals.user.password=secret
       - access.control.principals.user.tables=baseballStats,otherstuff
       - access.control.principals.user.permissions=READ
   ```
   
   Generated controller configs:
   ```
   apiVersion: v1
   kind: ConfigMap
   metadata:
     name: pinot-controller-config
   data:
     pinot-controller.conf: |-
       controller.helix.cluster.name=pinot-quickstart
       controller.port=9000
       controller.data.dir=/var/pinot/controller/data
       controller.zk.str=pinot-zookeeper:2181
       pinot.set.instance.id.to.hostname=true
       controller.task.scheduler.enabled=true
       
controller.admin.access.control.factory.class=org.apache.pinot.controller.api.access.BasicAuthAccessControlFactory
       pinot.controller.access.control.principals=admin,user
       pinot.controller.access.control.principals.admin.password=verysecret
       pinot.controller.access.control.principals.user.password=secret
       
pinot.controller.access.control.principals.user.tables=baseballStats,otherstuff
       pinot.controller.access.control.principals.user.permissions=READ
   ```
   Generated broker configs:
   ```
   apiVersion: v1
   kind: ConfigMap
   metadata:
     name: pinot-broker-config
   data:
     pinot-broker.conf: |-
       pinot.broker.client.queryPort=8099
       pinot.broker.routing.table.builder.class=random
       pinot.set.instance.id.to.hostname=true
       
pinot.broker.access.control.class=org.apache.pinot.broker.broker.BasicAuthAccessControlFactory
       pinot.broker.access.control.principals=admin,user
       pinot.broker.access.control.principals.admin.password=verysecret
       pinot.broker.access.control.principals.user.password=secret
       
pinot.broker.access.control.principals.user.tables=baseballStats,otherstuff
       pinot.broker.access.control.principals.user.permissions=READ
   ```
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to