Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-1571

Add Authorization to internal Components of Agent-Based Installer

XMLWordPrintable

    • BU Product Work
    • False
    • Hide

      None

      Show
      None
    • False
    • 0% To Do, 50% In Progress, 50% Done
    • 0
    • Program Call

      Feature Overview

      Implement authorization to secure API access for different user personas/actors in the agent-based installer.

      User Personas:

      • Read-Only Access: For "wait-for" and "monitor-add-nodes" commands.
      • Read-Write Access: For systemd services and the agent service.

      This isĀ 

      Goals

      The agent-based installer APIs have implemented basic security measures through authentication, as covered in AGENT-145.

      To further enhance security, it is crucial to implement user persona/actor-based authorization, allowing for differentiated access control, such as read-only or read-write permissions, based on the user's role.

      The goal of this implementation is to provide a more robust and secure API framework, ensuring that users can only perform actions appropriate to their role.

            racedoro@redhat.com Ramon Acedo
            racedoro@redhat.com Ramon Acedo
            Zane Bitter
            pawan pinjarkar pawan pinjarkar
            Biagio Manzari Biagio Manzari
            Stephanie Stout Stephanie Stout
            pawan pinjarkar pawan pinjarkar
            Ramon Acedo Ramon Acedo
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated: