Client Monitoring: require license + integrate filter #28000

pgellert · 2025-10-10T14:22:12Z

Integrate the filter parser and predicate into the ListKafkaConnections admin API endpoint.
Require an enterprise license for the ListKafkaConnections endpoint

Fixes https://redpandadata.atlassian.net/browse/CORE-13361
Fixes https://redpandadata.atlassian.net/browse/CORE-13573

Backports Required

Release Notes

none

Copilot

Pull Request Overview

This PR integrates filtering functionality and license requirements into the Kafka connections admin API endpoint. The changes enhance security by requiring an enterprise license and improve usability by allowing filtered queries.

Adds enterprise license validation to the list_kafka_connections endpoint
Integrates AIP filter parser and predicate for connection filtering
Updates tests to verify both filtering functionality and license enforcement

Reviewed Changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
tests/rptest/tests/list_kafka_connections_test.py	Adds tests for filtering integration and license requirement enforcement
src/v/redpanda/admin/services/broker.h	Updates constructor to accept feature table dependency for license checking
src/v/redpanda/admin/services/broker.cc	Implements license validation and filter integration in list_kafka_connections
src/v/redpanda/admin/services/BUILD	Adds dependencies for features, AIP filter, and protobuf RPC
src/v/redpanda/admin/server.cc	Updates broker service instantiation to pass feature table

tests/rptest/tests/list_kafka_connections_test.py

src/v/redpanda/admin/services/broker.cc

Integrate the filter parser and predicate into the ListKafkaConnections admin API endpoint.

pgellert · 2025-10-10T14:33:27Z

force-push: address copilot review

rockwotj · 2025-10-10T15:10:42Z

src/v/redpanda/admin/services/broker.cc

    auto result = connection_gather_result{};

    auto conn_ptrs = server.list_connections();
    co_await ss::maybe_yield();


nit: ss::coroutine::maybe_yield()

rockwotj · 2025-10-10T15:11:47Z

src/v/redpanda/admin/services/broker.cc

+        throw serde::pb::rpc::permission_denied_exception(
+          fmt::format("Invalid license: {}", status()));


failed_precondition?

Happy to switch to that if you think that's more appropriate, I was debating between the two. I went with permission_denied for consistency with the existing SR ACLs endpoint:

redpanda/src/v/pandaproxy/schema_registry/handlers.cc

Lines 904 to 907 in 1ffde40

throw ss::httpd::base_exception(

fmt::format("Invalid license: {}", status()),

ss::http::reply::status_type::forbidden);

}

After reading https://grpc.github.io/grpc/core/md_doc_statuscodes.html, failed_precondition seems more appropriate so I've switched to that.

vbotbuildovich · 2025-10-10T18:58:51Z

Retry command for Build#73952

please wait until all jobs are finished before running the slash command

/ci-repeat 1
tests/rptest/tests/random_node_operations_test.py::RedpandaNodeOperationsSmokeTest.test_node_ops_smoke_test@{"cloud_storage_type":1,"mixed_versions":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":2,"compaction_mode":"chunked_sliding_window","enable_failures":true,"mixed_versions":false,"with_iceberg":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":2,"compaction_mode":"adjacent_merge","enable_failures":false,"mixed_versions":false,"with_iceberg":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"chunked_sliding_window","enable_failures":false,"mixed_versions":false,"with_iceberg":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"chunked_sliding_window","enable_failures":true,"mixed_versions":false,"with_iceberg":true}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"adjacent_merge","enable_failures":true,"mixed_versions":false,"with_iceberg":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"sliding_window","enable_failures":false,"mixed_versions":false,"with_iceberg":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"sliding_window","enable_failures":true,"mixed_versions":false,"with_iceberg":true}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"chunked_sliding_window","enable_failures":true,"mixed_versions":false,"with_iceberg":false}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":1,"compaction_mode":"adjacent_merge","enable_failures":false,"mixed_versions":false,"with_iceberg":true}
tests/rptest/tests/random_node_operations_test.py::RandomNodeOperationsTest.test_node_operations@{"cloud_storage_type":2,"compaction_mode":"chunked_sliding_window","enable_failures":false,"mixed_versions":false,"with_iceberg":false}

vbotbuildovich · 2025-10-10T20:24:55Z

CI test results

test results on build#73952

test_class	test_method	test_arguments	test_kind	job_url	test_status	passed	reason	test_history
CloudStorageScrubberTest	test_scrubber	{"cloud_storage_type": 1}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23dd-4d15-9d74-91d4f90f8d17	FLAKY	20/21	upstream reliability is '100.0'. current run reliability is '95.23809523809523'. drift is 4.7619 and the allowed drift is set to 50. The test should PASS	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=CloudStorageScrubberTest&test_method=test_scrubber
SegmentMsTest	test_segment_rolling_with_retention_consumer	null	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceac-2c8d-479e-b705-8395b76cae86	FLAKY	19/21	upstream reliability is '92.07119741100324'. current run reliability is '90.47619047619048'. drift is 1.59501 and the allowed drift is set to 50. The test should PASS	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=SegmentMsTest&test_method=test_segment_rolling_with_retention_consumer
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 2, "compaction_mode": "adjacent_merge", "enable_failures": false, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e4-492c-90eb-dc685e4512e0	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "adjacent_merge", "enable_failures": false, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e5-45ad-8f8c-1d71e6758853	FAIL	0/12		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 2, "compaction_mode": "chunked_sliding_window", "enable_failures": false, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e7-4c5b-81ce-b7486540db25	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "chunked_sliding_window", "enable_failures": false, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e8-4e43-940d-e35dbd6feb78	FAIL	0/1	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 2, "compaction_mode": "sliding_window", "enable_failures": false, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23db-434e-a83f-0955de93c114	FAIL	0/17		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "sliding_window", "enable_failures": false, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23dd-4d15-9d74-91d4f90f8d17	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "adjacent_merge", "enable_failures": false, "mixed_versions": false, "with_iceberg": true}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e0-4436-ae5f-8a4610fa6d34	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "chunked_sliding_window", "enable_failures": false, "mixed_versions": false, "with_iceberg": true}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e3-4737-ab78-7842fd56d371	FAIL	0/17		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "sliding_window", "enable_failures": false, "mixed_versions": false, "with_iceberg": true}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e5-45ad-8f8c-1d71e6758853	FAIL	0/12		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 2, "compaction_mode": "adjacent_merge", "enable_failures": true, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23db-434e-a83f-0955de93c114	FAIL	0/17		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "adjacent_merge", "enable_failures": true, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23dd-4d15-9d74-91d4f90f8d17	FAIL	0/1	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 2, "compaction_mode": "chunked_sliding_window", "enable_failures": true, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23df-4814-91af-53234a17729c	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "chunked_sliding_window", "enable_failures": true, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e0-4436-ae5f-8a4610fa6d34	FAIL	0/1	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 2, "compaction_mode": "sliding_window", "enable_failures": true, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e2-4118-93b6-b56aab629242	FAIL	0/17		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "sliding_window", "enable_failures": true, "mixed_versions": false, "with_iceberg": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e3-4737-ab78-7842fd56d371	FAIL	0/18		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "adjacent_merge", "enable_failures": true, "mixed_versions": false, "with_iceberg": true}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e5-45ad-8f8c-1d71e6758853	FAIL	0/11		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "chunked_sliding_window", "enable_failures": true, "mixed_versions": false, "with_iceberg": true}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e8-4e43-940d-e35dbd6feb78	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RandomNodeOperationsTest	test_node_operations	{"cloud_storage_type": 1, "compaction_mode": "sliding_window", "enable_failures": true, "mixed_versions": false, "with_iceberg": true}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23dd-4d15-9d74-91d4f90f8d17	FAIL	0/1	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RandomNodeOperationsTest&test_method=test_node_operations
RedpandaNodeOperationsSmokeTest	test_node_ops_smoke_test	{"cloud_storage_type": 1, "mixed_versions": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceac-2c89-4464-a1c3-e6547bcdf6bc	FAIL	0/21	The test has failed across all retries	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RedpandaNodeOperationsSmokeTest&test_method=test_node_ops_smoke_test
RedpandaNodeOperationsSmokeTest	test_node_ops_smoke_test	{"cloud_storage_type": 1, "mixed_versions": false}	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e2-4118-93b6-b56aab629242	FAIL	0/17		https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RedpandaNodeOperationsSmokeTest&test_method=test_node_ops_smoke_test
RpkDebugBundleTest	test_debug_bundle	null	integration	https://buildkite.com/redpanda/redpanda/builds/73952#0199ceae-23e7-4c5b-81ce-b7486540db25	FLAKY	20/21	upstream reliability is '99.73544973544973'. current run reliability is '95.23809523809523'. drift is 4.49735 and the allowed drift is set to 50. The test should PASS	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=RpkDebugBundleTest&test_method=test_debug_bundle

test results on build#74061

test_class	test_method	test_arguments	test_kind	job_url	test_status	passed	reason	test_history
TimeQueryTest	test_timequery_with_local_gc	null	integration	https://buildkite.com/redpanda/redpanda/builds/74061#0199dca3-448d-42eb-8069-8e333c02873a	FLAKY	20/21	upstream reliability is '89.69957081545064'. current run reliability is '95.23809523809523'. drift is -5.53852 and the allowed drift is set to 50. The test should PASS	https://redpanda.metabaseapp.com/dashboard/87-tests?tab=142-dt-individual-test-history&test_class=TimeQueryTest&test_method=test_timequery_with_local_gc

This endpoint requires an enterprise license

Carry-over improvement from an earlier PR

Carry-over cleanup from an earlier PR

pgellert · 2025-10-13T07:32:10Z

force-push: change error type + minor fixups from earlier PRs

Copilot

Pull Request Overview

Copilot reviewed 7 out of 7 changed files in this pull request and generated no new comments.

pgellert requested a review from a team October 10, 2025 14:22

pgellert self-assigned this Oct 10, 2025

pgellert requested review from Copilot and michael-redpanda and removed request for a team October 10, 2025 14:22

github-actions bot added area/build area/redpanda labels Oct 10, 2025

Copilot AI reviewed Oct 10, 2025

View reviewed changes

tests/rptest/tests/list_kafka_connections_test.py Outdated Show resolved Hide resolved

src/v/redpanda/admin/services/broker.cc Outdated Show resolved Hide resolved

admin: integrate filtering to list_kafka_connections

00f6f62

Integrate the filter parser and predicate into the ListKafkaConnections admin API endpoint.

pgellert force-pushed the cm/filter-integ branch from e4b9a8c to 6e595a8 Compare October 10, 2025 14:33

rockwotj reviewed Oct 10, 2025

View reviewed changes

pgellert added 3 commits October 13, 2025 08:13

admin: check license in ListKafkaConnections

0474f8c

This endpoint requires an enterprise license

admin: prefer ss::coroutine::maybe_yield

8c3abaf

Carry-over improvement from an earlier PR

proto: add dot to two-line comment in kafka conns

87c8fbb

Carry-over cleanup from an earlier PR

pgellert force-pushed the cm/filter-integ branch from 6e595a8 to 87c8fbb Compare October 13, 2025 07:28

pgellert requested a review from a team as a code owner October 13, 2025 07:28

pgellert requested a review from Copilot October 13, 2025 07:32

Copilot AI reviewed Oct 13, 2025

View reviewed changes

pgellert requested a review from rockwotj October 13, 2025 07:32

rockwotj approved these changes Oct 13, 2025

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Client Monitoring: require license + integrate filter #28000

Client Monitoring: require license + integrate filter #28000

pgellert commented Oct 10, 2025

Uh oh!

Copilot AI left a comment

Uh oh!

Uh oh!

Uh oh!

pgellert commented Oct 10, 2025

Uh oh!

rockwotj Oct 10, 2025

Uh oh!

pgellert Oct 13, 2025

Uh oh!

rockwotj Oct 10, 2025

Uh oh!

pgellert Oct 10, 2025

Uh oh!

pgellert Oct 13, 2025

Uh oh!

vbotbuildovich commented Oct 10, 2025 •

edited

Loading

Uh oh!

vbotbuildovich commented Oct 10, 2025 •

edited

Loading

Uh oh!

pgellert commented Oct 13, 2025

Uh oh!

Copilot AI left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

		throw serde::pb::rpc::permission_denied_exception(
		fmt::format("Invalid license: {}", status()));

	throw ss::httpd::base_exception(
	fmt::format("Invalid license: {}", status()),
	ss::http::reply::status_type::forbidden);
	}

Client Monitoring: require license + integrate filter #28000

Are you sure you want to change the base?

Client Monitoring: require license + integrate filter #28000

Conversation

pgellert commented Oct 10, 2025

Backports Required

Release Notes

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull Request Overview

Reviewed Changes

Uh oh!

Uh oh!

Uh oh!

pgellert commented Oct 10, 2025

Uh oh!

rockwotj Oct 10, 2025

Choose a reason for hiding this comment

Uh oh!

pgellert Oct 13, 2025

Choose a reason for hiding this comment

Uh oh!

rockwotj Oct 10, 2025

Choose a reason for hiding this comment

Uh oh!

pgellert Oct 10, 2025

Choose a reason for hiding this comment

Uh oh!

pgellert Oct 13, 2025

Choose a reason for hiding this comment

Uh oh!

vbotbuildovich commented Oct 10, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Retry command for Build#73952

Uh oh!

vbotbuildovich commented Oct 10, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

CI test results

Uh oh!

pgellert commented Oct 13, 2025

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull Request Overview

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

vbotbuildovich commented Oct 10, 2025 •

edited

Loading

vbotbuildovich commented Oct 10, 2025 •

edited

Loading