Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-2883

[release-4.11] Make ccoctl set sts endpoints to regional in AWS credentials secrets

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Undefined
    • None
    • 4.11
    • Cloud Credential Operator
    • None
    • False
    • Hide

      None

      Show
      None
    • Hide
      [id="ocp-4-YY-ZZ-notable-technical-changes"]
      ==== Notable Technical Changes

      * The Cloud Credential Operator utility (`ccoctl`) now creates secrets that use regional endpoints for the xref:../authentication/managing_cloud_provider_credentials/cco-mode-sts.adoc[AWS Security Token Service (AWS STS)]. This approach aligns with AWS recommended best practices.
      Show
      [id="ocp-4-YY-ZZ-notable-technical-changes"] ==== Notable Technical Changes * The Cloud Credential Operator utility (`ccoctl`) now creates secrets that use regional endpoints for the xref:../authentication/managing_cloud_provider_credentials/cco-mode-sts.adoc[AWS Security Token Service (AWS STS)]. This approach aligns with AWS recommended best practices.
    • Unspecified Release Note Type - Unknown

    Description

      This bug card represents work done in https://issues.redhat.com/browse/CCO-257 to set STS endpoints to regional in AWS credentials secrets and is created to facilitate backporting the change to previous releases as required by the backport process [1].

      [1] https://docs.google.com/document/d/1qbKUl4K9PPW4tCbdDgWSXd5klosX77ifkxQLqzjztGE/edit#heading=h.mml0rz88o0nj

       

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-2882 [release-4.12] Make ccoctl set sts endpoints to regional in AWS credentials secrets

          • Undefined - Priority not specified.
          • Closed
          depends on

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-2882 [release-4.12] Make ccoctl set sts endpoints to regional in AWS credentials secrets

          • Undefined - Priority not specified.
          • Closed
          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-2884 [release-4.10] Make ccoctl set sts endpoints to regional in AWS credentials secrets

          • Undefined - Priority not specified.
          • Closed
          is depended on by

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-2884 [release-4.10] Make ccoctl set sts endpoints to regional in AWS credentials secrets

          • Undefined - Priority not specified.
          • Closed
          links to

          GitHub openshift/cloud-credential-operator#503: OCPBUGS-2883: Make ccoctl use regional STS endpoint by default

          Activity

            People

              abutcher@redhat.com Andrew Butcher
              abutcher@redhat.com Andrew Butcher
              Mingxia Huang Mingxia Huang
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: