Red Hat Summit Red Hat Summit지원콘솔개발자평가판 시작연락처

이 콘텐츠는 선택한 언어로 제공되지 않습니다.

Chapter 4. Configuring authentication

Application users need credentials to access Data Grid clusters. You can use default, generated credentials or add your own.

4.1. Default credentials
링크 복사

Data Grid Operator generates base64-encoded default credentials stored in an authentication secrets named

Expand
UsernameSecret nameDescription

developer

example-infinispan-generated-secret

Credentials for the default application user.

operator

example-infinispan-generated-operator-secret

Credentials that Data Grid Operator uses to interact with Data Grid resources.

4.2. Retrieving credentials
링크 복사

Get credentials from authentication secrets to access Data Grid clusters.

Procedure

  • Retrieve credentials from authentication secrets. 

    $ oc get secret example-infinispan-generated-secret
    Copy to Clipboard Toggle word wrap

    Base64-decode credentials. 

    $ oc get secret example-infinispan-generated-secret \
-o jsonpath="{.data.identities\.yaml}" | base64 --decode

credentials:
- username: developer
  password: dIRs5cAAsHIeeRIL
    Copy to Clipboard Toggle word wrap

4.3. Adding custom user credentials
링크 복사

Configure access to Data Grid cluster endpoints with custom credentials.

Note

Modifying spec.security.endpointSecretName triggers a cluster restart.

Procedure

  1. Create an identities.yaml file with the credentials that you want to add. 

    credentials:
- username: myfirstusername
  password: changeme-one
- username: mysecondusername
  password: changeme-two
    Copy to Clipboard Toggle word wrap

  2. Create an authentication secret from identities.yaml. 

    $ oc create secret generic --from-file=identities.yaml connect-secret
    Copy to Clipboard Toggle word wrap

  3. Specify the authentication secret with spec.security.endpointSecretName in your Infinispan CR and then apply the changes. 

    spec:
  security:
    endpointSecretName: connect-secret
    Copy to Clipboard Toggle word wrap

4.4. Changing the operator password
링크 복사

You can change the password for the operator user if you do not want to use the automatically generated password.

Procedure

  • Update the password key in the example-infinispan-generated-operator-secret secret as follows: 

    oc patch secret example-infinispan-generated-operator-secret -p='{"stringData":{"password": "supersecretoperatorpassword"}}'
    Copy to Clipboard Toggle word wrap
    Note

    You should update only the password key in the generated-operator-secret secret. When you update the password, Data Grid Operator automatically refreshes other keys in that secret.

4.5. Disabling user authentication
링크 복사

Allow users to access Data Grid clusters and manipulate data without providing credentials.

Important

Do not disable authentication if endpoints are accessible from outside the OpenShift cluster via spec.expose.type. You should disable authentication for development environments only.

Procedure

  1. Set false as the value for the spec.security.endpointAuthentication field in your Infinispan CR. 

    spec:
  security:
    endpointAuthentication: false
    Copy to Clipboard Toggle word wrap
  2. Apply the changes.
맨 위로 이동
Red Hat logoGithubredditYoutubeTwitter

자세한 정보

평가판, 구매 및 판매

커뮤니티

Red Hat 문서 정보

Red Hat을 사용하는 고객은 신뢰할 수 있는 콘텐츠가 포함된 제품과 서비스를 통해 혁신하고 목표를 달성할 수 있습니다. 최신 업데이트를 확인하세요.

보다 포괄적 수용을 위한 오픈 소스 용어 교체

Red Hat은 코드, 문서, 웹 속성에서 문제가 있는 언어를 교체하기 위해 최선을 다하고 있습니다. 자세한 내용은 다음을 참조하세요.Red Hat 블로그.

Red Hat 소개

Red Hat은 기업이 핵심 데이터 센터에서 네트워크 에지에 이르기까지 플랫폼과 환경 전반에서 더 쉽게 작업할 수 있도록 강화된 솔루션을 제공합니다.

Theme

© 2025 Red Hat