Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

refactor: deprecate dataplane-selector-configuration in favor of self-registration #1329

Merged

Conversation

ndr-brt
Copy link
Contributor

@ndr-brt ndr-brt commented May 23, 2024

WHAT

Deprecate dataplane-selector-configuration (printing warning whether a related configuration is set) , and add data-plane-self-registration on the data-plane ones.

WHY

data plane self-registration

FURTHER NOTES

  • this change should not break the current behavior and it should permit flawless update

Closes #1325

@ndr-brt ndr-brt added the refactoring Refactoring, does not add functionality label May 23, 2024
@ndr-brt ndr-brt force-pushed the 1325-dataplane-self-registration branch 20 times, most recently from f2778db to a2b0bb0 Compare May 27, 2024 07:22
@@ -34,7 +34,7 @@ dependencies {
runtimeOnly(libs.edc.core.did) // for the DID Public Key Resolver
runtimeOnly(libs.edc.identity.did.web)
runtimeOnly(libs.edc.config.filesystem)
runtimeOnly(libs.edc.auth.tokenbased)
// runtimeOnly(libs.edc.auth.tokenbased)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
// runtimeOnly(libs.edc.auth.tokenbased)

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes, I was just discovering that for some reasons I got 401 on the readiness check, commenting that solves the problem, in any case data-plane api are only supposed to be called by control plane so they they don't have to be secured (for the moment), I just removed that dependency because it does not make sense as it is supposed to secure management-api endpoints.

Copy link
Contributor

@paullatzelsperger paullatzelsperger May 27, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the Observability API (which contains the readiness check) should not be secured, but it also should never be exposed outside of the pod.

yes, commenting (or better: removing) this line may solve the problem, but if somehow the TokenBasedAuthenticationService fires for the Observability API, that would be a bug that would be worth investigating.

[edit]: my point was about removing, rather than commenting out :)

@ndr-brt ndr-brt force-pushed the 1325-dataplane-self-registration branch from a2b0bb0 to e07562e Compare May 27, 2024 07:49
Copy link

Quality Gate Passed Quality Gate passed

Issues
2 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

@ndr-brt ndr-brt merged commit d3d1081 into eclipse-tractusx:main May 27, 2024
34 checks passed
@ndr-brt ndr-brt deleted the 1325-dataplane-self-registration branch May 27, 2024 10:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
refactoring Refactoring, does not add functionality
Projects
Status: Merged
Development

Successfully merging this pull request may close these issues.

replace dataplane-selector-configuration with data-plane self registration
2 participants