Uploaded image for project: 'Red Hat Internal Developer Platform'
  1. Red Hat Internal Developer Platform
  2. RHIDP-10805

Use rover to manage users on the team ROSA cluster

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Undefined Undefined
    • None
    • None
    • Test Infrastructure
    • False
    • Hide

      None

      Show
      None
    • False
    • DEVAI Sprint 3265, DEVAI Sprint 3267

      Task Description (Required)

      https://source.redhat.com/groups/public/sre/wiki/osdrosa_rover_based_user_management outlines how to use Rover groups for user management on ROSA clusters.

      Rather than manually managing user access via Kubernetes groups on the cluster, update it so that membership is managed by Rover. Create two rover groups, with the following mappings:

      • devai-rosa-cluster-users: Maps to redhat-ai-dev-users group on the cluster, providing cluster-wide edit permissions.
      • devai-rosa-cluster-admin: Maps to cluster-admin group on the cluster.

      Note: It may not be possible to sync from rover to non-admin groups on the cluster (see https://redhat-internal.slack.com/archives/CCRND57FW/p1729705615504159). If that's the case, syncing to the more restricted admin group dedicated-admin will be fine.

       

              johnmcollier John Collier
              johnmcollier John Collier
              RHIDP - AI
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: