-
Task
-
Resolution: Done
-
Undefined
-
None
-
None
-
None
-
HMSIDM Sprint 35, HMSIDM Sprint 36, HMSIDM Sprint 38, HMSIDM Sprint 39, IdM Insights Sprint 40
-
1
Goal / Acceptance Criteria:
As an operator, I want to enable RBAC in stage environment such that:
- Our deployment.yaml in app-interface is updated to enable RBAC middleware
- This could require additional changes in app-interface to add or create a network policy that allows reaching out the RBAC micro-service (deployed in a different namespace).
Additional Information:
- https://github.com/RedHatInsights/rbac-config?tab=readme-ov-file#deployment
- HMS-3520: RBAC Draft - app-interface.
- Guide to Kubernetes Network Policies.
See: https://gitlab.cee.redhat.com/avisiedo/app-interface/-/commits/hms-3528-rbac-stage
PR at (please review and merge in the same order below):
- https://gitlab.cee.redhat.com/service/app-interface/-/merge_requests/102740 (enable on ephemeral by default)
- https://gitlab.cee.redhat.com/service/app-interface/-/merge_requests/102741 (enable network policy to reach out rbac in stage)
https://gitlab.cee.redhat.com/service/app-interface/-/merge_requests/102742 (enable middleware and set client base url on stage)- https://gitlab.cee.redhat.com/service/app-interface/-/merge_requests/108319 (enable middleware and set client base url on stage)
