-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Connect: RBAC won't Filter By Connector Name #4253
Comments
Hello there schaubce! 👋 Thank you and congratulations 🎉 for opening your very first issue in this project! 💖 In case you want to claim this issue, please comment down below! We will try to get back to you as soon as we can. 👀 |
Hello, We are also having the same issue, and we are not sure what 'use connects' means in the comment 'selector not implemented yet...'., which also makes the meaning of 'value' in 'resource: connect' ambiguous. Is there currently a way or a workaround to be able to define a regex for connector names? Or any documentation that makes it more clear how to use 'resource: connector' when we want to limit access to connectors? Thanks in advance for any help. |
Thank you, I appreciate the clarification. It is now clear that the 'value' field of the 'resource: connect' entry in RBAC definitions corresponds to the name fields of clusters.kafkaConnect entries, and currently it is not possible to limit permissions by the name or regex of the connectors defined within the Connect cluster itself. |
@tufank yeah, that's right. If you're looking for such a feature, I invite you to raise an issue here: https://github.com/kafbat/kafka-ui as this repo is not maintained anymore (#4255) |
Issue submitter TODO list
master
-labeled docker image and the issue still persists thereDescribe the bug (actual behavior)
We have the following configuration (I have removed other resources topic/cluster/etc. for simplicity)
When we refresh configs within Kafka-UI, no connectors are shown. If there is no specific filter (.*), it works appropriately, and shows all connectors.
Expected behavior
Similar to topics configuration (which we have working) , we'd expect to be able to use regex to filter out different connector names to limit who can view specific connectors. We did see this update in the documentation, but unsure if it is related, as the other config examples show it should work with regex:
vs
Your installation details
Hash: 56fa824 (Version 0.7.1)
Steps to reproduce
Can use normal set up for topics, cluster etc. Just need to limit the connect resource "value" to a single connector.
Screenshots
No response
Logs
No response
Additional context
The text was updated successfully, but these errors were encountered: