Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: configure management security filter chain #18569

Merged
merged 1 commit into from
May 16, 2024
Merged

fix: configure management security filter chain #18569

merged 1 commit into from
May 16, 2024

Conversation

romansmirnov
Copy link
Member

@romansmirnov romansmirnov commented May 16, 2024
edited

Description

This PR ensures that all actuator endpoints are accessible and do not return the status code 401. The same applies to the BrokerHealthRoutes (ready, startup, and health). Therefore, it defines a security filter chain managementSecurity only applied when one of the defined requestMatchers matches. If none of the requestMatchers match, then the default restGatewaySecurity security filter chain is applied, requiring proper authentication.

Related issues

closes #18568

@github-actions github-actions bot added the component/zeebe Related to the Zeebe component/team label May 16, 2024
@romansmirnov romansmirnov force-pushed the rs-18568-management-security-filter-chain branch 4 times, most recently from 519bbde to 8091609 Compare May 16, 2024 09:34
@romansmirnov romansmirnov force-pushed the rs-18568-management-security-filter-chain branch from 8091609 to 22ad5ed Compare May 16, 2024 12:05
@romansmirnov romansmirnov marked this pull request as ready for review May 16, 2024 12:35
tmetzke
tmetzke approved these changes May 16, 2024
View reviewed changes
Copy link
Member

@tmetzke tmetzke left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good from what I can see 👍

@romansmirnov romansmirnov added this pull request to the merge queue May 16, 2024
Merged via the queue into main with commit 8a2e0fc May 16, 2024
40 checks passed
@romansmirnov romansmirnov deleted the rs-18568-management-security-filter-chain branch May 16, 2024 13:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tmetzke tmetzke tmetzke approved these changes

@houssain-barouni houssain-barouni houssain-barouni approved these changes

Assignees
No one assigned
Labels
component/zeebe Related to the Zeebe component/team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

When activating the identity-auth profile, the health and readiness probes fail with status code 401
3 participants
@romansmirnov @tmetzke @houssain-barouni