Overview

As part of ARO-HCP, we need to support asynchronous requests for creating, deleting and updating external auth IDPs in Clusters Service.

To support this feature, we need to add new status condition(s) to the HostedCluster resource. These conditions should allow the Clusters Service to see the health of the external authentication IDP configuration supplied by the user, indicating whether its been successfully applied, is ready to be used or if there were errors during creation, update or deletion.

This request, follows on from OCPSTRAT-2172. At the time, it was agreed upon that a new condition that indicates the existence of day-2 client secret(s) is to be added initially, which only check for their existence.

This issue should cover the rest of the status condition(s) required to accurately reflect the status of an external authentication IDP as well as validating the contents of the day-2 client secret(s). The status must be available in the HostedCluster. Since there are multiple configurations in the HostedCluster, the status for each configured external auth provider should be easily identifiable by CS so it can accurately report the status back to the user.

See Phase 4: Comprehensive Status Reporting in the DDR for XCMSTRAT-574