You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
apiVersion: operators.coreos.com/v1alpha1kind: Subscriptionmetadata:
name: apicurio-registry-operatornamespace: apicurio-registry-operatorspec:
channel: 2.xname: apicurio-registrysource: community-operatorssourceNamespace: openshift-marketplaceinstallPlanApproval: Automaticconfig:
env:
- name: REGISTRY_DISABLE_APIS # this doesn't work...value: /apis/ibmcompat/.*,/api/.* # v1 APIs circumvent auth, force users to use v2 of the api
Also would be nice to support disabling v1 APIs directly via the ApicurioRegistry CRD, since this is a security hole for some use cases.
The text was updated successfully, but these errors were encountered:
To workaround an issue with ApiCurio v1 APIs circumventing auth, I attempted to add the suggested environment variable to the OLM Subscription to disable v1 APIs. However, the Subscription does not append environment variables to the
ApicurioRegistryDeployment. According to the OLM specs, Subscription Configs should be supported to make adjustments to the installation. https://github.com/operator-framework/operator-lifecycle-manager/blob/master/doc/design/subscription-config.md#resourcesAlso would be nice to support disabling v1 APIs directly via the
ApicurioRegistryCRD, since this is a security hole for some use cases.The text was updated successfully, but these errors were encountered: