Uploaded image for project: 'OpenShift Logging'
  1. OpenShift Logging
  2. LOG-4289

Provide LokiStack per-tenant mTLS authentication

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • Log Storage
    • None
    • Log Storage - Sprint 239, Log Storage - Sprint 240, Log Storage - Sprint 241, Log Storage - Sprint 242, Log Storage - Sprint 243, Log Storage - Sprint 244, Log Storage - Sprint 245, Log Storage - Sprint 246, Log Storage - Sprint 247, Log Storage - Sprint 248, Log Storage - Sprint 249, Log Storage - Sprint 250, Log Storage - Sprint 251, Log Storage - Sprint 252, Log Storage - Sprint 253

      As a LokiStack administrator, I want to authenticate per tenant via mTLS, so that a third-party authorization server (e.g. OIDC) is not needed in multi-cluster logging scenarios (e.g. SNO->OCP).

      Acceptance Criteria

      1. Provide mTLS authentication in the LokiStack Tenant spec for modes static and dynamic only.
      2. The user needs to provide a custom CA.
      3. The user needs to provide a custom server certificate.

      Developer Notes

              jmarcal@redhat.com Joao Marcal
              ptsiraki@redhat.com Periklis Tsirakidis
              Qiaoling Tang Qiaoling Tang
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated: