Hi, we are currently running CFK (confluent for kubernetes) with both TLS and RBAC turned on. This means we are using the CRD kind: ConfluentRolebinding to provide users access to the required topics and other resources they require. In relation to a project we are assisting with, one team requires fetching data from an Azure Eventhub, therefore our team proposed using the Azure Eventhub Source Connector to create this dataflow. The issue is however that when we try to start the connector from our Conflunet Control Center (C3), the connector fails and comments the error: Topic Authorization Failed.
After researching the error for a few hours, it seems that the kafka brokers are the ones denying the connector access, and it seems to specifically deny the connector access to the “Configure” operation, while allowing access to other operations such as “Delete”, “Create”, “Resume” and “Pause”. The RBAC currently given to the user trying to start the connector is “ResourceOwner” for the specified topic which should allow the configure operation, but it still fails. Anyone know what the “Configure” operation is for the Azure Eventhub Source Connector or anything related to the required RBAC roles for the Connector?
The operation the connector attemps, but gets denied by the Kafka Broker: