Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-1616

Continued GCP WIF enablement for OLM-managed operators

XMLWordPrintable

    • Strategic Portfolio Work
    • False
    • Hide

      None

      Show
      None
    • False
    • OCPSTRAT-1501Tokenized Auth Enablement for OLM-managed Operators on GCP
    • 100% To Do, 0% In Progress, 0% Done
    • 0
    • Program Call

      Feature Overview (aka. Goal Summary)  

      The following OLM-managed operators are deemed critical and shall be enabled for the standardized GCP configuration flow (OCPSTRAT-922):

      Component Jira ticket Status Timelines
      RHOAI RHOAISTRAT-352 RHOAI team believes there is nothing GCP specific. Created RHOAISTRAT-352 to validate end-to-end working on WIF cluster. TBD
      ACS ROX-25978 WIF is supported in ACS, but needs additional validation to ensure OSD-GCP customers should be able to install ACS on WIF enabled clusters and use ACS. ACS 4.7.0
      ACS 4.9
      ACM - Scott Berens has confirmed ACM does not natively use GCP APIs. -
      Red Hat Quay PROJQUAY-7729   TBD
      3Scale - There is nothing GCP related in the 3Scale operator. Also, the RHOAM Operator that uses the 3scale Operator does not have any GCP usage. Confirmed by Brian Gallargher -
      RHSSO   RHSSO/RHBK Product team mentioned they do not have resources to valudate these operators on a WIF-enabled OSD or OCP cluster TBD
      External DNS operator      

      Goals (aka. expected user outcomes)

      Unblock critical functionality on OSD-GCP with a streamlined, repeatable user experience to ease adoption of the service.

      Requirements (aka. Acceptance Criteria):

      • based on OCPSTRAT-922, the above mentioned operators will be enabled to support the standard configuration flow for GCP WIF
      • the operators core logic and metadata will be adapted to enable the flow on the command line and the Console

      Background

      These operators should provide a standardized configuration experience in environments where GCP WIF is enabled, e.g. OSD-GCP customers. Having a streamlined process around installing these with integration into GCP WIF will enable security-conscious customers to adopt the platform faster.

      Customer Considerations

      Customers are trained to use the ccoctl tool to carry out IAM changes in conjunction with OSD GCP. 

      Documentation Considerations

      Every one of these operators needs to clearly outline with IAM permissions are required and provide easy to follow steps to create them. This information should be visible from the operators description (part of the OLM metadata) as well as reside in the components official product documentation.

              DanielMesser Daniel Messer
              DanielMesser Daniel Messer
              Brett Tofel, Eran Tamir, Gregory Charot, Jamie Parker, Lance Galletti, Phil Griffiths, Radek Vokal, Shreyans Mulkutkar, Venkat Kolli (Inactive)
              Yufen Chang Yufen Chang
              Matthew Werner Matthew Werner
              Daniel Messer Daniel Messer
              Senthamilarasu S Senthamilarasu S
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: