We need a mechanism to configure various Java security properties, like networkaddress.cache.negative.ttl and so on.
These are defined in a java.security file that is installed by the openjdk package in product images.
To overwrite properties defined here, a new file must be created with the properties to be chanced and the JVM must be started with -Djava.security.properties=my-security.props command line argument.
### Operators
- [x] airflow-operator - not JVM based
- [x] commons-operator - not JVM based
- [ ] https://github.com/stackabletech/druid-operator/pull/464
- [ ] https://github.com/stackabletech/edc-operator/pull/24
- [ ] https://github.com/stackabletech/hbase-operator/pull/389
- [ ] https://github.com/stackabletech/hdfs-operator/pull/384
- [ ] https://github.com/stackabletech/hello-world-operator/pull/23
- [ ] https://github.com/stackabletech/hive-operator/pull/365
- [ ] https://github.com/stackabletech/kafka-operator/pull/616
- [x] listener-operator - not JVM based
- [ ] https://github.com/stackabletech/nifi-operator/pull/497
- [x] opa-operator - not JVM based
- [x] secret-operator - not JVM based
- [ ] https://github.com/stackabletech/spark-k8s-operator/pull/272
- [x] superset-operator - not JVM based
- [ ] https://github.com/stackabletech/trino-operator/pull/460
- [ ] https://github.com/stackabletech/zookeeper-operator/pull/715
- [ ] https://github.com/stackabletech/docker-images/pull/433
Description
We need a mechanism to configure various Java security properties, like
networkaddress.cache.negative.ttl
and so on.These are defined in a
java.security
file that is installed by theopenjdk
package in product images.To overwrite properties defined here, a new file must be created with the properties to be chanced and the JVM must be started with
-Djava.security.properties=my-security.props
command line argument.