Details
-
Epic
-
Resolution: Unresolved
-
Critical
-
None
-
GCP WIF Support
-
False
-
-
False
-
Not Selected
-
To Do
-
ToDo
-
50
-
50%
-
0
-
0
-
Very Likely
-
0
-
None
-
Unset
-
Unknown
Description
Epic Goal
- Support Google Cloud's WIF (Workload Identity Federation) for OADP.
- Why is this important?
OpenShift is generally moving to short lived tokens via cloud providers for enhanced security e.g. "rosa sts". Also Ford Motors has a specific request for this.
- [Upstream Design| None
- Downstream Design
Scenarios
- GCP WIF authentication + normal regression and function test.
- Ensure normal GCP auth works + normal regression and function test
- Special attention to backups w/ imagestream enabled.
Acceptance Criteria
- CI - MUST be running successfully with tests automated
- Release Technical Enablement - Provide necessary release enablement details and documents.
Dependencies (internal and external)
- Velero
- GCP cloud
- GCP account that can edit roles
Open questions::
- TBD
Done Checklist
- [ x ] CI - CI is running, tests are automated and merged.
- [ ] Release Enablement <link to Feature Enablement Presentation>
- [ x ] DEV - Upstream code and tests merged: <link to meaningful PR or GitHub Issue>
- [ ] DEV - Upstream documentation merged: <link to meaningful PR or GitHub Issue>
- [ ] DEV - Downstream build attached to advisory: <link to errata>
- [ ] QE - Test plans in Polarion: <link or reference to Polarion>.
- [ ] QE - 1 - Regression tests, All the existing tests should pass
- [ ] QE - Automated tests merged: <link or reference to automated tests>
- [ ] DOC - Downstream documentation merged: <link to meaningful PR>
Attachments
Issue Links
- is related to
-
OADP-3520 [DOC] Support Google Cloud's WIF (Workload Identity Federation) for OADP
-
- Planning
-
