Holocron is developed to provide RBAC, but it doesn't have its own login system. Instead, it relies on SSO provided user identity. If SSO is enabled, Holocron should require KeyCloak authentication to provide the required JWT.
The more detail here the better!
Proposed Solution
Authservice needs an entry in chains for Holocron
Holocron should have values for SSO.client_id and SSO.client_secret
If SSO.enabled is true, then the Authservice key/value label pair should be passed to the frontend and api pods
Feature Request
Enable KeyCloak protection for Holocron.
Why
Holocron is developed to provide RBAC, but it doesn't have its own login system. Instead, it relies on SSO provided user identity. If SSO is enabled, Holocron should require KeyCloak authentication to provide the required JWT.
The more detail here the better!
Proposed Solution
chains
for HolocronSSO.client_id
andSSO.client_secret
SSO.enabled
is true, then the Authservice key/value label pair should be passed to the frontend and api pods