-
Story
-
Resolution: Unresolved
-
Undefined
-
None
-
None
-
None
-
False
-
-
False
-
-
Replace Red Hat RBAC service with on-premise authentication and authorization solution.
Acceptance Criteria:
- [ ] Choose and deploy identity provider (Keycloak/OIDC)
- [ ] Implement JWT-based authentication in both backends
- [ ] Create role and permission management system
- [ ] Migrate existing permission checks to new authorization system
- [ ] Update middleware for identity verification
Technical Details:
- Remove dependencies on ros/lib/rbac_interface.py and internal/api/middleware/rbac.go
- Implement OIDC/JWT token validation
- Create permission mapping for existing roles: ros::, ros:*:read