Open wsun-confluent opened 2 years ago
MosheBlumbergX
commented
2 years ago I don't think we should be adding default configs to properties / YAML file. You wouldn't do it with other deployments.
The addition makes the YAML file looks over bloated. If a user wants to investigate what properties can be used he can check the API reference https://docs.confluent.io/operator/current/co-api.html#tag/Kafka
wsun-confluent
commented
2 years ago I don't think we should be adding default configs to properties / YAML file. The addition makes the YAML file looks over bloated.
By that logic, we should remove the following defaults:
groupNameAttribute: cn
groupMemberAttribute: member
Pointing the user to the docs doesn't provide a good user experience, especially when they are asking for a complete example.
As an additional hint for MDS / Confluent Server Authorizer's LDAP configuration, add the following parameters with their defaults (to keep same functionality within current examples):
userSearchScope: 1groupSearchScope: 1These configuration should go into
services.mds.provider.ldap.configurationssection (here).The user may continue to refer to the LDAP Authorizer documentation for clarification on these properties.