Nephio is a Kubernetes-based automation platform for deploying and managing highly distributed, interconnected workloads such as 5G Network Functions, and the underlying infrastructure on which those workloads depend.
Apache License 2.0
93
stars
52
forks
source link
Add more Auth support to porch Repository CRD #741
Currently, the porch repo CR only supports BasicAuth and a GCP specific WorkloadIdentity token.
Proposal is to add support for passing a CaBundle to the GitRepo resource.
Either by allowing the user to add it to the SecretRef used by the gitrepo - https://github.com/nephio-project/porch/blob/main/pkg/git/git.go#L157
or
Extending the GitRepo CR to add additional optional fields, such as: CaBundle InsecureSkipTLS (For testing purposesmaybe?)
Other Auth methods should also be considered. sshkeys, etc
An interim solution for git repos using custom CA - https://github.com/nephio-project/porch/pull/58/