Details
Description
As an Argo CD admin/user I would like to see all the SSO provider under `.spec.sso` field in the Argo CD CR. Moving to this "provider" parameter will allow at most one SSO provider to be enabled at any time. We can then enforce Dex pods should only be created when `.spec.sso.provider: dex` is enabled
Background:
1. Currently Keycloak SSO provider can be configured using the `.spec.sso.provider` option whereas Dex can be configured using the `.spec.dex` field in the Argo CD CR. The goal is to have a unified location for all the SSO providers.
2. Currently Dex pods are created by default for any Argo CD instance created by the gitops-operator unless the DISABLE_DEX env var is set to `true` in the CSV/Subscription resource. This behavior should be changed. Dex pods should only be created when `.spec.sso.provider: dex` is configured in the Argo CD CR.
Acceptance Criteria:
- `.spec.dex` is deprecated and a notice is added to release notes that it will be removed in 1.9
- A k8s event is created when `.spec.dex` is used by customer (Slack convo)
- `.spec.sso` is added as the right way of specifying sso provider and added to the release notes
- Dex pods should only be created when `.spec.sso.provider: dex` is configured in the Argo CD CR.
Attachments
Issue Links
- incorporates
-
GITOPS-1332 Unification of dex config into `.spec.sso`, and creation of pods when enabled
-
- Closed
-
- is related to
-
GITOPS-1450 Login with keycloak fails - page refreshes constantly
-
- Closed
-