Kafkarator

Kafkarator is a Kubernetes operator on the NAIS platform, providing self-service functionality for Aiven hosted Kafka through Kubernetes resources.

Kafkarator defines a Kubernetes custom resource, kafka.nais.io/Topic. When users create or update this resource, Kafkarator translates it to Aiven topics and ACL entries.

User documentation

https://doc.nais.io/persistence/kafka/

Developer documentation

Kafkarator uses earthly via earthlyw for building.

Use ./earthlyw +docker to build docker images for kafkarator and canary.

Verifying the kafkarator images and their contents

The images are signed "keylessly" using Sigstore cosign. To verify their authenticity run

cosign verify \
--certificate-identity "https://github.com/nais/kafkarator/.github/workflows/main.yml@refs/heads/master" \
--certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
europe-north1-docker.pkg.dev/nais-io/nais/images/kafkarator@sha256:<shasum>

The images are also attested with SBOMs in the CycloneDX format. You can verify these by running

cosign verify-attestation --type cyclonedx  \
--certificate-identity "https://github.com/nais/kafkarator/.github/workflows/main.yml@refs/heads/master" \
--certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
europe-north1-docker.pkg.dev/nais-io/nais/images/kafkarator@sha256:<shasum>

Name	Name	Last commit message	Last commit date
Latest commit dependabot[bot] build(deps): bump aquasecurity/trivy-action from 0.29.0 to 0.30.0 (#343 ) Mar 14, 2025 9022d1f · Mar 14, 2025 History 845 Commits
.github	.github	build(deps): bump aquasecurity/trivy-action from 0.29.0 to 0.30.0 (#343 )	Mar 14, 2025
canary-deployer	canary-deployer	Deploy topics to tenant clusters for Nav	Mar 7, 2025
charts	charts	fix: ingen main i Kafkarator	Mar 10, 2025
cmd	cmd	police comments and toodos	Nov 27, 2024
controllers	controllers	Strip error messages that are less helpful or might contain credentials	Nov 14, 2024
dashboards	dashboards	Use label query to get list of tenants	Dec 3, 2024
doc	doc	Postmortem Kafkarator credentials logging 2024-11-13	Nov 14, 2024
examples	examples	Correct expression to deny compacted topics with local retention	Dec 2, 2024
pkg	pkg	feat: lagt til deleteRetentionHours	Feb 10, 2025
scripts	scripts	Fix incorrect filename in PEP723-comment in python scripts	Nov 22, 2024
.earthignore	.earthignore	Add Tiltfile for local testing	Nov 13, 2024
.envrc	.envrc	add dev shell	Aug 29, 2024
.gitignore	.gitignore	add dev shell	Aug 29, 2024
CODEOWNERS	CODEOWNERS	Update CODEOWNERS	Aug 30, 2022
Earthfile	Earthfile	Switch to chainguard/static image for production images	Mar 6, 2025
LICENSE	LICENSE	Initial commit	Aug 24, 2020
Makefile	Makefile	Simplify canary main by extracting start time recording and certifica…	Aug 15, 2024
README.md	README.md	use verified distroless images	Apr 14, 2023
Tiltfile	Tiltfile	Add Tiltfile for local testing	Nov 13, 2024
earthlyw	earthlyw	Updated earthlyw with new bash-version	May 31, 2024
flake.lock	flake.lock	add dev shell	Aug 29, 2024
flake.nix	flake.nix	upkeep: bump liberator og k8s	Feb 6, 2025
go.mod	go.mod	build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 (#341 )	Mar 13, 2025
go.sum	go.sum	build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 (#341 )	Mar 13, 2025
main.go	main.go	add initial Go module definition	Aug 24, 2020
tools.go	tools.go	make mocks using versioned mockery, in tools.go	Dec 5, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Kafkarator

User documentation

Developer documentation

Verifying the kafkarator images and their contents

About

Releases

Packages 3

Contributors 19

Languages

License

nais/kafkarator

Folders and files

Latest commit

History

Repository files navigation

Kafkarator

User documentation

Developer documentation

Verifying the kafkarator images and their contents

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 3

Contributors 19

Languages