search

Aridhia-Open-Source / PHEMS_federated_node

Federated Node service for PHEMS project
GNU General Public License v3.0
5 stars 0 forks source link

Identity Providers k8s controllers #18

Open RossStiven opened 2 months ago

RossStiven commented 2 months ago

In order to facilitate the IdP management it might be best to implement a custom Go controller in k8s so that data controllers or k8s owners can add/remove other FN keycloak instances by submitting a template yaml file or removing its created instance.

The yaml file would refer to a Custom Resource Definition and could look like:


1. apiVersion: com.federatednode.phems/v1
2. kind: IdentityProvider
3. metadata:
4.   name: keycloak-hus
5.   namespace: identities
6. spec:
7.   name: 
8.   client: 
9.   secret: 
10.   displayName: 
11.   url:

This should ideally trigger a script that handles the laborious process of adding an IdP in Keycloak in the background, effectively allowing the 2 keycloak instances to exchange tokens seamlessly

r-casula commented 2 months ago

We'll be sideline this issue for the time being