Consumer-Group are not loading once Azure OAuth and RBAC is configured, but with Basic Auth consumer-group is loading correctly.

[chethan8592]

Below is my configuration for application.yaml file with Azure OAuth and RBAC configuration.

micronaut:
security:
enabled: true
oauth2:
enabled: true
clients:
azure:
client-id: "clientID"
client-secret: "ClientSecret"
scopes:
- openid
openid:
issuer: "https://login.microsoftonline.com/{TenantID}/v2.0"

akhq:
server:
access-log:
enabled: true
name: org.akhq.log.access
connections:
cluster1:
properties:
bootstrap.servers: "bootstrap server address"

cluster2:
  properties:
    bootstrap.servers: "bootstrap server address"  

security:
default-group: no-roles
roles:
Viewer:
- resources: [ "TOPIC" ]
actions: [ "READ"]
- resources: [ "TOPIC_DATA" ]
actions: [ "READ"]
- resources: ["CONSUMER_GROUP"]
actions: ["READ" ]
- resources: ["CONNECT_CLUSTER"]
actions: ["READ"]
- resources: ["CONNECTOR"]
actions: ["READ"]
- resources: ["SCHEMA"]
actions: ["READ"]
- resources: ["NODE"]
actions: ["READ"]
- resources: ["ACL"]
actions: ["READ"]
- resources: ["KSQLDB"]
actions: ["READ"]
KafkaAdmin:
- resources: [ "TOPIC" ]
actions: [ "READ", "CREATE", "UPDATE", "DELETE", "READ_CONFIG", "ALTER_CONFIG" ]
- resources: [ "TOPIC_DATA" ]
actions: [ "READ", "CREATE", "UPDATE", "DELETE" ]
- resources: ["CONSUMER_GROUP"]
actions: ["READ", "DELETE", "UPDATE_OFFSET", "DELETE_OFFSET"]
- resources: ["CONNECT_CLUSTER"]
actions: ["READ"]
- resources: ["CONNECTOR"]
actions: ["READ", "CREATE", "DELETE", "UPDATE_STATE"]
- resources: ["SCHEMA"]
actions: ["READ", "CREATE", "UPDATE", "DELETE", "DELETE_VERSION"]
- resources: ["NODE"]
actions: ["READ", "READ_CONFIG", "ALTER_CONFIG"]
- resources: ["ACL"]
actions: ["READ"]
- resources: ["KSQLDB"]
actions: ["READ", "EXECUTE"]
groups:
viewer-group:
- role: Viewer
patterns: ["msg1.", "msg2."]
clusters: ["cluster1.", "cluster2."]
admin-group:
- role: KafkaAdmin
patterns: ["msg1.", "msg2."]
clusters: ["cluster1.", "cluster2."]
oidc:
enabled: true
providers:
azure:
label: "Click here to Login as SSO"
username-field: email
# specifies the field name in the oidc claim containing the use assigned role (eg. in keycloak this would be the Token Claim Name you set in your Client Role Mapper)
groups-field: roles
default-group: Viewer
groups:
# the name of the user role set in your oidc provider and associated with your user (eg. in keycloak this would be a client role)
- name: KafkaAdmin
groups:
# the corresponding akhq groups (eg. topic-reader/writer or akhq default groups like admin/reader/no-role)
- admin-group
- name: Viewer
groups:
- viewer-group

with above configuration, Consumer-Group are not loading and display no data found.

But with same clusters and basic_Auth without Azure OAuth and Rbac, consumer-group are loading.

could some one please help me is there something i need to make changes to get consumer-group loaded with Azure-AD and RBAC configuration.