The examples below refer to the CPS project
For kafka clients that require a topic, this will be defined as a custom resource in the relevant helm chart.
apiVersion: kafka.strimzi.io/v1beta2 kind: KafkaTopic metadata: name: {{ .Values.config.dataUpdatedTopic.name }} labels: strimzi.io/cluster: {{ include "common.release" . }}-strimzi spec: partitions: {{ .Values.config.dataUpdatedTopic.partitions }} config: retention.ms: {{ .Values.config.dataUpdatedTopic.retentionMs }} segment.bytes: {{ .Values.config.dataUpdatedTopic.segmentBytes }}
For kafka clients that require access (read/write) to a topic, this will be defined as a custom resource in the relevant helm chart.
apiVersion: kafka.strimzi.io/v1beta2 kind: KafkaUser metadata: name: {{ include "common.release" . }}-{{ .Values.global.cpsKafkaUser }} labels: strimzi.io/cluster: {{ include "common.release" . }}-strimzi spec: authentication: type: scram-sha-512 authorization: type: simple acls: - resource: type: group name: {{ .Values.config.dataUpdatedTopic.consumer.groupId }} operation: Read - resource: type: topic name: {{ .Values.config.dataUpdatedTopic.name }} operation: Read - resource: type: topic name: {{ .Values.config.dataUpdatedTopic.name }} operation: Write