Uploaded image for project: 'Openshift sandboxed containers'
  1. Openshift sandboxed containers
  2. KATA-2835

Azure workload identity support

    XMLWordPrintable

Details

    • Epic
    • Resolution: Unresolved
    • Medium
    • None
    • None
    • cloud-api-adapter, Operator
    • None
    • Azure workload identity support
    • False
    • None
    • False
    • KATA-2833Support Azure workload identity for CoCo/peer-pods
    • Not Selected
    • To Do
    • KATA-2833 - Support Azure workload identity for CoCo/peer-pods
    • 0
    • 0% 0%
    • 0
    • 0

    Description

      Epic Goal

      • Have support in workload identity for CAA
      • Utilize Cloud Credentials Operator to fetch/create and set the manged identity

      Why is this important?

      • Workload identity methodology is often used by Openshift customers
      • It helps to avoid credentials passing and privileges escalation
      • Improve user experience and security 

      Scenarios

      1. cluster administrator is able to setup OSC+peerpods with workload Identity __ 
      2. cluster administrator can install OSC+peer-pods and workload identity is automatically fetched and set using CCO 

      Acceptance Criteria 

      1. Peer-pods are running when using custom pre-configured workload identity 
      2. Peer-pods are running when Workload identity is being fetched & set using CCO

      Additional context:

      Attachments

        Activity

          People

            Unassigned Unassigned
            ssheribe@redhat.com Snir sheriber
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: