This is an automated email from the ASF dual-hosted git repository.
lhotari pushed a commit to branch branch-3.0
in repository https://gitbox.apache.org/repos/asf/pulsar.git
The following commit(s) were added to refs/heads/branch-3.0 by this push:
new ab237cb0c9e [improve][broker] Support to specify auth-plugin,
auth-parameters and tls-enable arguments when init cluster metadata (#23087)
(#23126)
ab237cb0c9e is described below
commit ab237cb0c9ef95d8eda8244e414336c682fe78a4
Author: Kai Wang <[email protected]>
AuthorDate: Tue Aug 6 22:06:12 2024 +0800
[improve][broker] Support to specify auth-plugin, auth-parameters and
tls-enable arguments when init cluster metadata (#23087) (#23126)
---
.../apache/pulsar/PulsarClusterMetadataSetup.java | 51 ++++++++++++++++++----
.../broker/zookeeper/ClusterMetadataSetupTest.java | 43 ++++++++++++++++++
2 files changed, 86 insertions(+), 8 deletions(-)
diff --git
a/pulsar-broker/src/main/java/org/apache/pulsar/PulsarClusterMetadataSetup.java
b/pulsar-broker/src/main/java/org/apache/pulsar/PulsarClusterMetadataSetup.java
index ceeb4e2ef90..17dc393ddca 100644
---
a/pulsar-broker/src/main/java/org/apache/pulsar/PulsarClusterMetadataSetup.java
+++
b/pulsar-broker/src/main/java/org/apache/pulsar/PulsarClusterMetadataSetup.java
@@ -94,6 +94,19 @@ public class PulsarClusterMetadataSetup {
description = "Broker-service URL for new cluster with TLS
encryption", required = false)
private String clusterBrokerServiceUrlTls;
+ @Parameter(names = {"-te",
+ "--tls-enable"},
+ description = "Enable TLS connection for new cluster")
+ private Boolean clusterBrokerClientTlsEnabled;
+
+ @Parameter(names = "--auth-plugin",
+ description = "The authentication plugin for new cluster")
+ protected String clusterAuthenticationPlugin;
+
+ @Parameter(names = "--auth-parameters",
+ description = "The authentication parameters for new cluster")
+ protected String clusterAuthenticationParameters;
+
@Parameter(names = { "-zk",
"--zookeeper" }, description = "Local ZooKeeper quorum
connection string",
required = false,
@@ -315,14 +328,36 @@ public class PulsarClusterMetadataSetup {
PulsarResources resources = new PulsarResources(localStore,
configStore);
- ClusterData clusterData = ClusterData.builder()
- .serviceUrl(arguments.clusterWebServiceUrl)
- .serviceUrlTls(arguments.clusterWebServiceUrlTls)
- .brokerServiceUrl(arguments.clusterBrokerServiceUrl)
- .brokerServiceUrlTls(arguments.clusterBrokerServiceUrlTls)
- .proxyServiceUrl(arguments.clusterProxyUrl)
- .proxyProtocol(arguments.clusterProxyProtocol)
- .build();
+ ClusterData.Builder clusterDataBuilder = ClusterData.builder();
+ if (arguments.clusterWebServiceUrl != null) {
+ clusterDataBuilder.serviceUrl(arguments.clusterWebServiceUrl);
+ }
+ if (arguments.clusterWebServiceUrlTls != null) {
+
clusterDataBuilder.serviceUrlTls(arguments.clusterWebServiceUrlTls);
+ }
+ if (arguments.clusterBrokerServiceUrl != null) {
+
clusterDataBuilder.brokerServiceUrl(arguments.clusterBrokerServiceUrl);
+ }
+ if (arguments.clusterBrokerServiceUrlTls != null) {
+
clusterDataBuilder.brokerServiceUrlTls(arguments.clusterBrokerServiceUrlTls);
+ }
+ if (arguments.clusterBrokerClientTlsEnabled != null) {
+
clusterDataBuilder.brokerClientTlsEnabled(arguments.clusterBrokerClientTlsEnabled);
+ }
+ if (arguments.clusterAuthenticationPlugin != null) {
+
clusterDataBuilder.authenticationPlugin(arguments.clusterAuthenticationPlugin);
+ }
+ if (arguments.clusterAuthenticationParameters != null) {
+
clusterDataBuilder.authenticationParameters(arguments.clusterAuthenticationParameters);
+ }
+ if (arguments.clusterProxyUrl != null) {
+ clusterDataBuilder.proxyServiceUrl(arguments.clusterProxyUrl);
+ }
+ if (arguments.clusterProxyProtocol != null) {
+ clusterDataBuilder.proxyProtocol(arguments.clusterProxyProtocol);
+ }
+
+ ClusterData clusterData = clusterDataBuilder.build();
if (!resources.getClusterResources().clusterExists(arguments.cluster))
{
resources.getClusterResources().createCluster(arguments.cluster,
clusterData);
}
diff --git
a/pulsar-broker/src/test/java/org/apache/pulsar/broker/zookeeper/ClusterMetadataSetupTest.java
b/pulsar-broker/src/test/java/org/apache/pulsar/broker/zookeeper/ClusterMetadataSetupTest.java
index da5914f60e2..4267c7564fa 100644
---
a/pulsar-broker/src/test/java/org/apache/pulsar/broker/zookeeper/ClusterMetadataSetupTest.java
+++
b/pulsar-broker/src/test/java/org/apache/pulsar/broker/zookeeper/ClusterMetadataSetupTest.java
@@ -44,6 +44,7 @@ import org.apache.pulsar.PulsarClusterMetadataSetup;
import org.apache.pulsar.PulsarInitialNamespaceSetup;
import org.apache.pulsar.broker.resources.PulsarResources;
import org.apache.pulsar.broker.resources.TenantResources;
+import org.apache.pulsar.common.policies.data.ClusterData;
import org.apache.pulsar.common.policies.data.Policies;
import org.apache.pulsar.common.util.ObjectMapperFactory;
import org.apache.pulsar.functions.worker.WorkerUtils;
@@ -86,6 +87,48 @@ public class ClusterMetadataSetupTest {
PulsarClusterMetadataSetup.main(args);
SortedMap<String, String> data3 = localZkS.dumpData();
assertEquals(data1, data3);
+ String clusterDataJson =
data1.get("/admin/clusters/testReSetupClusterMetadata-cluster");
+ assertNotNull(clusterDataJson);
+ ClusterData clusterData = ObjectMapperFactory
+ .getMapper()
+ .reader()
+ .readValue(clusterDataJson, ClusterData.class);
+ assertEquals(clusterData.getServiceUrl(), "http://127.0.0.1:8080";);
+ assertEquals(clusterData.getServiceUrlTls(), "https://127.0.0.1:8443";);
+ assertEquals(clusterData.getBrokerServiceUrl(),
"pulsar://127.0.0.1:6650");
+ assertEquals(clusterData.getBrokerServiceUrlTls(),
"pulsar+ssl://127.0.0.1:6651");
+ assertFalse(clusterData.isBrokerClientTlsEnabled());
+ }
+
+ public void testSetupClusterMetadataWithAuthEnabled() throws Exception {
+ String clusterName = "cluster-with-auth";
+ String[] args = {
+ "--cluster", clusterName,
+ "--zookeeper", "127.0.0.1:" + localZkS.getZookeeperPort(),
+ "--configuration-store", "127.0.0.1:" +
localZkS.getZookeeperPort(),
+ "--web-service-url", "http://127.0.0.1:8080";,
+ "--web-service-url-tls", "https://127.0.0.1:8443";,
+ "--broker-service-url", "pulsar://127.0.0.1:6650",
+ "--broker-service-url-tls", "pulsar+ssl://127.0.0.1:6651",
+ "--tls-enable",
+ "--auth-plugin",
"org.apache.pulsar.client.impl.auth.AuthenticationToken",
+ "--auth-parameters", "token:my-token"
+ };
+ PulsarClusterMetadataSetup.main(args);
+ SortedMap<String, String> data = localZkS.dumpData();
+ String clusterDataJson = data.get("/admin/clusters/" + clusterName);
+ assertNotNull(clusterDataJson);
+ ClusterData clusterData = ObjectMapperFactory
+ .getMapper()
+ .reader()
+ .readValue(clusterDataJson, ClusterData.class);
+ assertEquals(clusterData.getServiceUrl(), "http://127.0.0.1:8080";);
+ assertEquals(clusterData.getServiceUrlTls(), "https://127.0.0.1:8443";);
+ assertEquals(clusterData.getBrokerServiceUrl(),
"pulsar://127.0.0.1:6650");
+ assertEquals(clusterData.getBrokerServiceUrlTls(),
"pulsar+ssl://127.0.0.1:6651");
+ assertTrue(clusterData.isBrokerClientTlsEnabled());
+ assertEquals(clusterData.getAuthenticationPlugin(),
"org.apache.pulsar.client.impl.auth.AuthenticationToken");
+ assertEquals(clusterData.getAuthenticationParameters(),
"token:my-token");
}
@DataProvider(name = "bundleNumberForDefaultNamespace")
