Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Unresolved
Priority: Normal
Fix Version/s: None
Affects Version/s: None
Component/s: Cloud Credentials Operator
Labels:
- bucket
- cco
- ccoctl
- cee.neXT
- gcp

Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Intelligence Requested:
Market:
PX Impact Score:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

1. Proposed title of this feature request

Ability to create private gcp bucket with using CCOCTL gcp create command

2. What is the nature and description of the request?

When running ccoctl gcp create command, it creates a public gcp bucket for OIDC provider.

As of now, only aws support creating of private S3 bucket when running ccoctl aws create.

ccoctl aws create-all \
  --name=<name> \
  --region=<aws_region> \
  --credentials-requests-dir=<path_to_credentials_requests_directory> \
  --output-dir=<path_to_ccoctl_output_dir> \
  --create-private-s3-bucket

[1]https://docs.openshift.com/container-platform/4.15/installing/installing_aws/installing-aws-customizations.html#installing-aws-with-short-term-creds_installing-aws-customizations

Need similar option for GCP cloud services.

3. Why does the customer need this? (List the business requirements here)

At customer's environment, creating public bucket is against the policy.

4. List any affected packages or components.

ccoctl binary

is triggering

OCPSTRAT-1734 Use private storage buckets in GCP for clusters that use GCP Workload Identity

Assignee:: Ju Lim

Reporter:: Chinmay Deshpande

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2024/08/09 9:48 AM

Updated:: 2024/10/25 5:46 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates