Loading...

XML

Word

Printable

Type: Epic
Resolution: Won't Do
Priority: Major
Fix Version/s: None
Affects Version/s: openshift-4.10
Labels:
- GCP
- gcp-wif
- quay-effort

Epic Name:
Add image registry for GCP workload identity
Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Epic Status:
To Do
Feature Link:
OCPSTRAT-469 - Install and upgrade OpenShift with GCP Workload Identity
Parent Link:
OCPSTRAT-469Install and upgrade OpenShift with GCP Workload Identity
Target Version:

openshift-4.10, openshift-4.11, openshift-4.12

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

In OpenShift 4.10.3-4.10.7, GCP Workload Identity works with Image Registry, but Image Registry has known regressions in Bugs2069807 and 2065689.

In OpenShift 4.10.8, image registry support for using GCP Workload Identity was removed due to the discovery of an adverse impact to the image registry (Bugs2069807 and 2065689).

To use the image registry on an OpenShift Container Platform 4.10.8+ cluster that uses GCP Workload Identity, you must configure the image registry to use long-lived credentials instead.

Refer to https://docs.openshift.com/container-platform/4.10/authentication/managing_cloud_provider_credentials/cco-mode-gcp-workload-identity.html and https://access.redhat.com/articles/6898641 for more information.

This epic is intended to track the future work needed to restore Workload Identity support for the image registry in a later release.

is related to

CCO-114 Support GCP workload identity

Closed

relates to

RFE-2046 Support for GCP Workload Identity Federation

Accepted

links to

openshift/openshift-docs#47976: OSDOCS-3840 Revert unsupported status of GCP workload identity in docs

Assignee:: Akhil Rane (Inactive)

Reporter:: Ju Lim

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2022/04/14 7:21 PM

Updated:: 2023/03/30 3:49 PM

Resolved:: 2022/08/04 5:49 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates

Hide