Open alexeykazakov opened 6 years ago
Switch Che to Auth
DONE. Login using Auth's OAuth2.0 workflow.
Start generating tokens in Auth instead of KC
We already do so. Need to stop talking to KC, and talk to RHD only.
Switch all existing Authorization implementation to Auth service
Done :fireworks:
Support offline tokens in Auth.
updated the comment above with the list of tasks.
Currently we have there layers of services for login: auth.openshift.io -> sso.openshift.io (OSIO Keycloak) -> developers.redhat.com (RHD Keycloak). As soon as we switch Che to use Auth service and have authorization service in place on the auth.openshift.io side we can get rid of the OSIO Keycloak layer a start using RHD Keycloak directly.
Phase 1 : Stop talking to keycloak except during login.
Phase 2: Talk to RHD directly during login
Dependency
- [ ] Support local login https://github.com/fabric8-services/fabric8-auth/issues/584Also tracked in openshiftio GitHub - https://github.com/openshiftio/openshift.io/issues/2367