Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

LDAP Authentication #172

Closed
8 tasks done
nightkr opened this issue Feb 8, 2022 · 6 comments
Closed
8 tasks done

LDAP Authentication #172

nightkr opened this issue Feb 8, 2022 · 6 comments
Assignees

Comments

@nightkr
Copy link
Member

nightkr commented Feb 8, 2022

Description

We want to support LDAP authentication in the given products below.

Products

Tasks

Preview Give feedback
  1. adwk67
  2. type/feature-new
    sbernauer vsupalov
  3. sbernauer
  4. release-note
    sbernauer
  5. release-note release/2022-11
    soenkeliebau
  6. area/documentation
    fhennig
  7. release-note/action-required release/2023-01 type/bug
    fhennig
  8. release/2023-04 type/feature-improvement
    sbernauer vsupalov

Not in scope:

Acceptance

  • LDAP is configurable in the CRD using the LDAP structs from operator-rs
  • A user/admin can configure the product to use a LDAP server for authentication
  • There is documentation on how to configure the product with LDAP using the Custom Resource
  • Optional: There is an example demonstrating the product with LDAP
  • There are tests which include:
    • OpenLDAP is installed and accessible via the product
    • Optional: LDAP works encrypted and unencrypted
    • Queries / access to the product works with the LDAP credentials
  • It is added to the feature tracker (ask Lars for help)
@maltesander
Copy link
Member

maltesander commented Oct 3, 2022

I checked and all existing LDAP issues are mentioned here. I checked the unknown / not supported products and this is what i came up with:

Products

@maltesander maltesander moved this from Refinement: Waiting for to Refinement: In Progress in Stackable Engineering Oct 3, 2022
@maltesander maltesander self-assigned this Oct 3, 2022
@maltesander maltesander moved this from Refinement: In Progress to Refinement Acceptance: Waiting for in Stackable Engineering Oct 7, 2022
@maltesander maltesander removed their assignment Oct 7, 2022
@lfrancke lfrancke moved this from Refinement Acceptance: Waiting for to Development: Track in Stackable Engineering Oct 7, 2022
@fhennig
Copy link
Contributor

fhennig commented Nov 2, 2022

I found a ticket and I think it goes well with the acceptance criteria:

There is documentation on how to configure the product with LDAP using the Custom Resource

@siegfriedweber brought this up: the documentation on LDAP is lacking stackabletech/documentation#300

maybe this ticket could be added to the epic?

@lfrancke
Copy link
Member

lfrancke commented Nov 3, 2022

Thank you @fhennig. Is that something we can already get started on?

@fhennig
Copy link
Contributor

fhennig commented Nov 3, 2022

The ticket lists a few options, we still have to pick. But we can refine it!

@fhennig
Copy link
Contributor

fhennig commented Nov 9, 2022

After we have LDAP authentication everywhere, it would be good to get the LDAP groups into OPA, so support group based authorization. There is already a ticket for it, and I wanted to link it here: stackabletech/opa-operator#237

@lfrancke lfrancke self-assigned this Feb 21, 2023
@lfrancke
Copy link
Member

lfrancke commented Mar 8, 2023

This is all done. I decided to keep the last remaining issue as out-of-scope and I'll close this.

Thank you everyone!

@lfrancke lfrancke closed this as completed Mar 8, 2023
@lfrancke lfrancke moved this from In Progress to Done in Stackable End-to-End Coordination Mar 8, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
Development

No branches or pull requests

6 participants