Uploaded image for project: 'Agent-based deployment for OpenShift Installer'
  1. Agent-based deployment for OpenShift Installer
  2. AGENT-60

Enable authentication between agent and assisted-service

    XMLWordPrintable

Details

    • Task
    • Resolution: Won't Do
    • Major
    • openshift-4.11
    • None
    • None
    • None
    • Agent Sprint 217

    Description

      Currently AUTH_TYPE is set to none in the config map.
      Other clients like the container that reads in the ZTP manifests and registers the cluster in assisted-service also need to authenticate.

      There are three authentication types supported by assisted-service: none, rhsso, and local (https://github.com/openshift/assisted-service/blob/4f446b7d3b02b99fdfda89ddb680a294c3a809e6/pkg/auth/authenticator.go#L15)

      We will likely be using the local AUTH_TYPE. Using local auth requires generating a token: https://github.com/openshift/assisted-service/commit/3b0e77e1ed5f7559ab1d0793ed9b23f8cc766aed

      Example of how to configure local auth: https://github.com/openshift/assisted-service/commit/e2a0806ebc450c68eb0efa6de4486c5e2659c7d1

      ncarboni@redhat.com would be able to help with additional information.

      Attachments

        Issue Links

          is duplicated by

          Task - Represents a small unit of work that is not end-user facing. AGENT-146 Enhancement for Agent Installer Internal Authorization

          • Undefined - Priority not specified.
          • Closed

          Activity

            People

              lranjbar@redhat.com Lisa Rashidi-Ranjbar
              rwsu1@redhat.com Richard Su
              Jianwei Hou Jianwei Hou
              Amrita Sakthivel Amrita Sakthivel (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: