Loading...

XML

Word

Printable

Type: Epic
Resolution: Unresolved
Priority: Normal
Fix Version/s: None
Affects Version/s: None
Component/s: Shift Stack Installer
Labels:
- cluster-api-provider-openstack

Epic Name:
CAPO: new API for Security Groups
Work Type:
BU Product Work
Story Points:
5
Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Epic Status:
To Do
Feature Link:
OCPSTRAT-1429 - CAPO is functionally equivalent to what installer/terraform did pre 4.16
Parent Link:
OCPSTRAT-1429CAPO is functionally equivalent to what installer/terraform did pre 4.16

Sprint:
ShiftStack Sprint 245, ShiftStack Sprint 246, ShiftStack Sprint 247, ShiftStack Sprint 248

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Intelligence Requested:
Market:

Currently, CAPO is very opinionated when Security Groups are managed and over time too many rules were added without enough flexibility.

In OpenShift, we need more than the default rules for both the control plane & security group. Also, we need to replace Terraform to create additional Security Groups that will later be used by the machines.

We want to achieve this in CAPO.

Upstream issue: https://github.com/kubernetes-sigs/cluster-api-provider-openstack/issues/1752

Upstream KEP: https://github.com/kubernetes-sigs/cluster-api-provider-openstack/pull/1756

is blocked by

OSASINFRA-3349 CAPO: refactor how ports are managed

Closed

Assignee:: Emilien Macchi

Reporter:: Emilien Macchi

Product Manager:: Gil Rosenberg

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2023/11/21 3:11 PM

Updated:: 2024/09/04 9:27 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates