Uploaded image for project: 'Red Hat Internal Developer Platform'
  1. Red Hat Internal Developer Platform
  2. RHIDP-9792

Create secure sign-in resolvers for GitLab and GitHub auth

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Normal Normal
    • 1.9.0
    • 1.8.0
    • Authentication, Catalog
    • None
    • RHDH Security 3283, RHDH Security 3284

      Story

      As a user of RHDH, I want to be able to use secure sign-in resolvers so that I can resolve users logging in with GitHub/GitLab to their respective entity in the catalog based on an immutable ID.

       

      For GitHub:

      • Upstream: add GitHub ID in the final ingested user entity
      • rhdh repo OR upstream: add sign-in resolver that resolves based on the GitHub ID

       

      For GitLab:

      • Upstream: add GitLab ID in the final ingested user entity
      • rhdh repo OR upstream: add sign-in resolver that resolves based on the GitLab ID

      Background

      This is required for security when using multiple auth and catalog providers. It ensures that the user authenticating with a given auth provider is matched with the user in the catalog that came from the same IdP

      Dependencies and Blockers

      QE impacted work

      Documentation impacted work

      Acceptance Criteria

      upstream documentation updates (design docs, release notes etc)

      Technical enablement / Demo

              rh-ee-jhe Jessica He
              rh-ee-jhe Jessica He
              RHDH Security
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: