forked from netobserv/documents
-
Notifications
You must be signed in to change notification settings - Fork 0
/
kowl.yaml
32 lines (31 loc) · 1.22 KB
/
kowl.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
# may be needed if security contraints of k8s cluster expect a custom user range
podSecurityContext: {runAsUser: 1000660000, fsGroup: 1000660000}
# configuration of kowl
kowl:
# See reference config: https://github.com/cloudhut/kowl/blob/master/docs/config/kowl.yaml)
config:
kafka:
brokers:
# Set your bootstrap url. Kowl does domain name validation so be sure to pick a valid url which is covered in the subject alternative name of the certificate of the bootsrap endpoint (e.g. no <namespace>.svc.cluster.local address).
- kafka-cluster-kafka-bootstrap.netobserv
tls:
enabled: true
caFilepath: /etc/strimzi/ca/ca.crt
certFilepath: /etc/strimzi/user/user.crt
keyFilepath: /etc/strimzi/user/user.key
extraVolumeMounts: |-
- name: strimzi-ca
mountPath: /etc/strimzi/ca
readOnly: true
- name: strimzi-user
mountPath: /etc/strimzi/user
readOnly: true
extraVolumes: |-
- name: strimzi-ca
secret:
# you need to prefix this secret name with the name of you cluster
secretName: kafka-cluster-cluster-ca-cert
- name: strimzi-user
secret:
# you need to reference the name of a existing KafkaUser resource
secretName: kowl-kafka