Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-7668

extend FEATURE_USER_INITIALIZE to work with OIDC superusers

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • quay-3.14
    • Quay
    • None
    • Future Sustainability
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      2. What is the nature and description of the request?

      currently quay only allows the quayadmin to be created and initialized and to get a temporary API token issued as long as there is no other users in the database. It would be nice to extend this functionality to OIDC so that designated superusers could get a temporary API token in a method similar to what the quayadmin is doing

      3. Why does the customer need this? 

      customer quote: 
The most limitating one is actually the first one. Is there any work on the roadmap to enable an automated installation of Quay?
From what I gathered in the answer to the first question is that it is impossible to automate the first installation and configuration of Quay. We absolutely need to log in at least once and create an organization, a Oauth2 Client and finally a Token for that Organization with super user access to be able to manage the creation of organizations by API.

      For OIDC this is currently impossible except by logging into the UI and creating the permanent token

      4. List any affected packages or components.

      quay

              rhn-coreos-tunwu Tony Wu
              dshoemak@redhat.com Dan S
              None
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                None
                None