Closed legal90 closed 6 years ago
@legal90 This is an oversight on my part, as we've always used different client_id
values (which are essentially the cluster-name for us, so we've not hit this issue).
As you say, using .ClusterName
would avoid any possible conflicts.
If you could submit a PR that would be great 👍
Thanks again 👍
Hi!
First - thank yo so much for this project and especially for helm charts which you provided for both of
dex
anddex-k8s-authenticator
! 👍But when I looked on the page with kubectl commands rendered after the successful authentication, I've noticed that in some places it uses
.ClientID
instead of.ClusterName
(when the latter looks more reasonable). For example:https://github.com/mintel/dex-k8s-authenticator/blob/ab246db44aa89df1d9c8f98dc2e2fdb6b4c797e3/templates/linux-mac-common.html#L80-L82 and https://github.com/mintel/dex-k8s-authenticator/blob/ab246db44aa89df1d9c8f98dc2e2fdb6b4c797e3/templates/linux-mac-common.html#L90
Actual Behavior
That is how it looks in my case:
And that's how commands are rendered on the page:
As we can see, there is
dex-k8s-authenticator
instead ofmy-k8s-cluster.com
, the cluster name set in the config. I guess that will cause actual problems on the multi-cluster installations, when a singledex-k8s-authenticator
instance is used to talk with multipledex
installations - each per cluster. In that case theclient_id
could be the same (theoretically).Expected Behavior
I would expect the cluster name being an actual cluster identifier in my kubeconfig:
I can send a PR without any problem, but first I just want to make sure - is that a valid point, or I missed something?
Thank you!