Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support new CSP auth method for Wavefront (AOA) #4054

Closed
oppegard opened this issue Aug 31, 2023 · 2 comments · Fixed by #4102
Closed

Support new CSP auth method for Wavefront (AOA) #4054

oppegard opened this issue Aug 31, 2023 · 2 comments · Fixed by #4102
Labels
enhancement A general enhancement registry: wavefront A Wavefront (Tanzu Observability) Registry related issue spring-boot change Change is needed in Spring Boot for this issue
Milestone
1.12.0-RC1

Comments

@oppegard
Copy link

Please describe the feature request.

Wavefront has integrated into VMware's CSP authentication system, and the wavefront-sdk-java library has been updated to support that. We would like micrometer to support this additional authentication method in WavefrontMeterRegistry

Rationale

New Wavefront customers will be onboarded to CSP-only clusters, and the existing authentication method of WF API Token will not be available to them. To allow these customers to use micrometer for sending metrics to Wavefront, they'll need CSP authentication available.

Additional context

The release version of wavefront-sdk-java with these changes is 3.4.0.

There are two types of CSP authentication: server-to-server tokens and user-api-tokens. We envision the changes looking something like this:

  • CSP User API Token

    • In WavefrontMeterRegistry, something like new WavefrontClient.Builder(getWavefrontReportingUri(config), config.cspApiToken()).useTokenForCSP()

  • CSP Server to Server OAuth

    • In WavefrontMeterRegistry, something like new WavefrontClient.Builder(getWavefrontReportingUri(config), config.cspClientId(), config.cspClientSecret())
    • If an optional OrgID is provided, calling builder.cspOrgId(config.cspOrgId())

Note that CSP Authentication is only valid for Direct Ingestion scenarios (like DEFAULT_DIRECT in WavefrontConfig). It is not relevant for the DEFAULT_PROXY case.

Last, we've created a similar issue for Spring Boot: spring-projects/spring-boot#37165

Thank you!

@oppegard and @warshawd
@scottfrederick scottfrederick mentioned this issue Aug 31, 2023
Closed
@shakuzen shakuzen added enhancement A general enhancement registry: wavefront A Wavefront (Tanzu Observability) Registry related issue and removed waiting-for-triage labels Aug 31, 2023
@shakuzen shakuzen added this to the 1.12 backlog milestone Sep 1, 2023
@shakuzen
Copy link
Member

shakuzen commented Sep 1, 2023

Until dedicated support for this is added, users can provide a customized WavefrontSender to the WavefrontMeterRegistery.builder(). For example:

WavefrontMeterRegistry meterRegistry = WavefrontMeterRegistry.builder(config)
    .wavefrontSender(WavefrontMeterRegistry.getDefaultSenderBuilder(config).useTokenForCSP().build())
    .build();
WavefrontMeterRegistry meterRegistry = WavefrontMeterRegistry.builder(config)
    .wavefrontSender(new WavefrontClient.Builder(getWavefrontReportingUri(config), cspClientId, cspClientSecret)
        .cspOrgId(cspOrgId)
        .build())
    .build();

@oppegard oppegard mentioned this issue Sep 27, 2023
Merged
@shakuzen shakuzen linked a pull request Oct 5, 2023 that will close this issue
Support API Token Type from the Wavefront SDK #4102
Merged
@shakuzen shakuzen modified the milestones: 1.12 backlog, 1.12.0-RC1 Oct 5, 2023
@shakuzen shakuzen added the spring-boot change Change is needed in Spring Boot for this issue label Oct 5, 2023
@shakuzen
Copy link
Member

shakuzen commented Oct 5, 2023

Resolved by #4102. A new configuration method apiTokenType has been added to WavefrontConfig. This, in conjunction with the existing apiToken method, can be used to configure the new CSP auth method. See wavefrontHQ/wavefront-sdk-java#301 for more about the format to specify the token, especially when there are multiple parts.

@shakuzen shakuzen closed this as completed Oct 5, 2023
izeye added a commit to izeye/micrometer that referenced this issue Oct 7, 2023
@izeye
Add Javadoc since for WavefrontConfig.apiTokenType()
4d29041 
See micrometer-metricsgh-4054
@izeye izeye mentioned this issue Oct 7, 2023
Merged
shakuzen pushed a commit that referenced this issue Oct 9, 2023
@izeye
Add Javadoc since for WavefrontConfig.apiTokenType() (#4194)
8acebf2 
See gh-4054
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement A general enhancement registry: wavefront A Wavefront (Tanzu Observability) Registry related issue spring-boot change Change is needed in Spring Boot for this issue
Projects
None yet
Milestone
1.12.0-RC1
Development

Successfully merging a pull request may close this issue.

Support API Token Type from the Wavefront SDK jonatan-ivanov/micrometer
2 participants
@oppegard @shakuzen