Aiven-Open / auth-for-apache-kafka

Aiven Authentication and Authorization Plugins for Apache Kafka®
Apache License 2.0
2 stars 3 forks source link

feat: add authorize operation metrics #206

Closed jeqo closed 1 month ago

jeqo commented 1 month ago

Currently, the only way to troubleshoot denied operations is by going to the log. To make this easier, there are a couple of metrics being added: one for each result type. Allowed operations are tagged by operation, so the cardinality is bound to the type of operations. Denied operations are tagged further with resource and principal. Even though this increases the cardinality considerably, it should only be used for the cases where there are authorization issues.