KubeMQ Docs
KubeMQ.io
Login / Register
Search…
Introduction
What's New
Getting Started
Quick Start
Build & Deploy
Create Cluster
Create Dashboard
Create Connector
Message Patterns
Learn
The Basics
Message Patterns
Access Control
Clustering
Dashboard
Connectors
Configuration
Cluster
Set Cluster Name
Set Cluster Namespace
Set Persistent Volume
Set Cluster Replicas
Set Cluster Image
Set Cluster Security
Set Authentication
Set Authorization
Set Notification
Set License
Set gRPC Interface
Set Rest Interface
Set Api Interface
Set Store Settings
Set Queues Settings
Set Routing
Set Health Probe
Set Resources Limits
Set Logs
Set Node Selectors
Dashboard
Connectors
HOW TO
Connect Your Cluster
Show Dashboard
Get Cluster Status
Get Dashboard Status
Get Cluster Logs
Development
SDK
Cookbook
Troubleshooting
Start Here
Kubemqctl
Get Started
Create
Get
Delete
Set
Scale Cluster
Queues
Events
Events Store
Commands
Queries
Config
License
Open Source Software Notices
Powered By
GitBook
Set Authorization
Kubemqctl
Helm
kubectl
Flags
Flag
Type/Options
Default
Description
--authorization-enabled
string
false
Enable authorization configuration
--authorization-policy-data
string
""
Set authorization policy data
--authorization-policy-file
string
""
set authorization policy filename
--authorization-url
string url
""
Set authorization policy loading url
--authorization-auto-reload
int
0
Set auto reload policy data from url
Examples
Set predefined authorization rules policy where policy.json is json array of access control rules:
kubemqctl create cluster --authorization-enabled --authorization-policy-file ./policy.json
Set authorization web service rules source:
kubemqctl create cluster --authorization-enabled --authorization-url
"http://your.url.rules/"
--authorization-auto-reload
120
KubeMQ will call "
http://your.url.rules
" every 120 seconds and pulls the Authorization policy json array
Values
Value
Type/Options
Default
Description
authorization.PolicyData
string
""
Set Authorization policy data
authorization.url
string url
""
Set Optional authorization server url for policy data
authorization.autoReload
int
0
Set auto reload policy data from url
Examples
Set predefined authorization rules policy where policy.json is json array of access control rules:
helm
install
kubemq-cluster --set-file authorization.policyData
=
./policy.json kubemq-charts/kubemq
Set authorization web service rules source:
helm
install
kubemq-cluster --set authorization.url
=
"http://your.url.rules/"
,authorization.autoReload
=
120
kubemq-charts/kubemq
Fields
Field
Type/Options
Default
Description
policyData
string
""
Set Authorization policy data
url
string url
""
Set Optional authorization server url for policy data
autoReload
int
0
Set auto reload policy data from url
Examples
Set predefined authorization rules policy where policy.json is json array of access control rules:
Run:
kubectl apply -f
{
below-yaml-file
}
apiVersion
:
core.k8s.kubemq.io/v1alpha1
kind
:
KubemqCluster
metadata
:
name
:
kubemq
-
cluster
namesapce
:
kubemq
labels
:
app
:
kubemq
-
cluster
spec
:
replicas
:
3
authorization
:
policy
:
|-
[
{
"ClientID"
:
"client-1"
,
"Events"
:
true
,
"EventsStore"
:
false
,
"Queues"
:
false
,
"Commands"
:
false
,
"Queries"
:
false
,
"Channel"
:
"foo.bar.1"
,
"Read"
:
false
,
"Write"
:
true
},
{
"ClientID"
:
"client-2"
,
"Events"
:
true
,
"EventsStore"
:
false
,
"Queues"
:
false
,
"Commands"
:
false
,
"Queries"
:
false
,
"Channel"
:
"foo.bar.2"
,
"Read"
:
false
,
"Write"
:
true
},
]
Set authorization web service rules source:
Run:
kubectl apply -f
{
below-yaml-file
}
apiVersion
:
core.k8s.kubemq.io/v1alpha1
kind
:
KubemqCluster
metadata
:
name
:
kubemq
-
cluster
namesapce
:
kubemq
labels
:
app
:
kubemq
-
cluster
spec
:
replicas
:
3
authorization
:
url
:
"http://your.url.rules/"
autoReload
:
120
​
Learn Access Control - Authorization Feature
​
Previous
Set Authentication
Next
Set Notification
Last modified
2yr ago
Copy link