Closed v0lkc closed 3 weeks ago
Busola evaluates the kubelogin
arguments at the following location:
To support the --oidc-use-access-token
argument, you'll need to add it to the OIDC_PARAM_NAMES
map. This update is necessary so that the login logic can determine whether to forward the id_token
or the access_token
. Three locations require changes for this update:
Description
Busola currently does not support the newly added
--oidc-use-access-token
flag in thekubelogin
utility. This flag is essential for enabling authentication using theaccess_token
instead of theid_token
. Implementing support for this flag in Busola would allow users to authenticate with XSUAA (SAP BTP) and leverage BTP roles provided in the access token's scope attribute for granting permissions.Reasons
Attachments