Implementing OIDC Support in Kubernetes for JFrog Artifactory Integration

[garganshulgarg]

JFrog Artifactory recently introduced OIDC Integration. The provided example for GH Workflow access works effectively. Now, we aim to enable OIDC Support for our applications on a Kubernetes cluster. Currently, we utilize vault-plugin-secrets-artifactory and have established backend roles and roles within Vault, connecting to multiple Artifactory groups. With OIDC Support now directly available within Artifactory, we plan to eliminate the use of Vault. Furthermore, we employ VaultDynamicSecret Kubernetes Object to fetch temporary tokens within our Kubernetes namespace, utilized by pods to pull images from Artifactory. Is there a Kubernetes operator available for this purpose? Additionally, I'm seeking examples to unravel the Kubernetes OIDC mystery.

[alexhung]

@garganshulgarg I don't have answers to your question, unfortunately. I suggest you send the questions to your JFrog support team.

[garganshulgarg]

@alexhung : Thanks for the same !! Will ask the same query with JFrog Support