feat: create oauth2 auth trigger, integrate it with rabbitmq scaler#7454
Conversation
|
Thank you for your contribution! 🙏 Please understand that we will do our best to review your PR and give you feedback as soon as possible, but please bear with us if it takes a little longer as expected. While you are waiting, make sure to:
Once the initial tests are successful, a KEDA member will ensure that the e2e tests are run. Once the e2e tests have been successfully completed, the PR may be merged at a later date. Please be patient. Learn more about our contribution guide. |
✅ Snyk checks have passed. No issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
zroubalik
left a comment
There was a problem hiding this comment.
Could you please also open docs PR (documenting both new TriggerAuth config and RabbitMQ)?
|
hey @rickbrouwer, could you give my PR another look? Thanks! |
|
hey @rickbrouwer, could you look at the PR again? i fixed the changelog issue |
|
hey @rickbrouwer, small ping for this PR |
|
btw @rickbrouwer do i need to open a PR to helm chart? i do modify the CRDs but i assume they are generated when a release is done right? |
|
It all looks good to me! Great! |
I did test it locally to make sure this works, will add E2E test |
|
@rickbrouwer added E2E tests for it |
|
can you check the semgrep findings? |
|
@rickbrouwer i see the same pattern in other tests as well |
|
/run-e2e rabbit* |
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
Signed-off-by: AvivGuiser <[email protected]>
|
/run-e2e rabbit passed tests: 14failed tests: 0 |
…edacore#7454) * feat: create oauth2 auth trigger, integrate it with rabbitmq scaler Signed-off-by: AvivGuiser <[email protected]> * updated scaler-schema Signed-off-by: AvivGuiser <[email protected]> * update changelog Signed-off-by: AvivGuiser <[email protected]> * fix changelog and manifests Signed-off-by: AvivGuiser <[email protected]> * fix changelog Signed-off-by: AvivGuiser <[email protected]> * fix changelog Signed-off-by: AvivGuiser <[email protected]> * remove unrelated changes Signed-off-by: AvivGuiser <[email protected]> * remove unrelated changes Signed-off-by: AvivGuiser <[email protected]> * remove unrelated changes Signed-off-by: AvivGuiser <[email protected]> * fix conflicts Signed-off-by: AvivGuiser <[email protected]> * remvoe test files Signed-off-by: AvivGuiser <[email protected]> * validate the url is only http/https Signed-off-by: AvivGuiser <[email protected]> * remove revive rule from .golangci.yml Signed-off-by: AvivGuiser <[email protected]> * add E2E tests for rabbitmq oauth2 Signed-off-by: AvivGuiser <[email protected]> * fix unrelerated diffs after rebase Signed-off-by: AvivGuiser <[email protected]> * make clientSecret optional and make ClientCredential as default for type Signed-off-by: AvivGuiser <[email protected]> * update cluster trigger auth yml Signed-off-by: AvivGuiser <[email protected]> * block basic-auth and oauth2 in rabbitmq scaler, fix http client Signed-off-by: AvivGuiser <[email protected]> * remove webhook validation for client secret Signed-off-by: AvivGuiser <[email protected]> * update changelog.md Signed-off-by: AvivGuiser <[email protected]> * use authentication.OAuth and other fixes Signed-off-by: AvivGuiser <[email protected]> * update scalers-schema.yaml Signed-off-by: AvivGuiser <[email protected]> * fix conflicts Signed-off-by: AvivGuiser <[email protected]> * update changelog.md Signed-off-by: AvivGuiser <[email protected]> --------- Signed-off-by: AvivGuiser <[email protected]> Signed-off-by: AvivGuiser <[email protected]> Signed-off-by: Yurii Shcherbak <[email protected]>
Provide a description of what has been changed
This PR add a new OAuth2 spec to to TriggerAuth crd, this spec will generate an access token that is returned to the scaler.
This PR also integrates this new spec to RabbitMQ scaler (currently only for http connection)
this allows people who use RabbitMQ with OAuth to use a timed access token instead of username/password
Checklist
make generate-scalers-schemahas been run to update any outdated generated filesFixes #7379
Fixes #7525
Docs kedacore/keda-docs#1707