Nephio is a Kubernetes-based automation platform for deploying and managing highly distributed, interconnected workloads such as 5G Network Functions, and the underlying infrastructure on which those workloads depend.
Apache License 2.0
93
stars
52
forks
source link
[ims] Credentials handling for created or existing clusters #761
Upon a ClusterRequest, the IMS controller will either create a cluster, or identify an existing cluster. In order for the FOCOM to interact with the created cluster through O2DMS K8s profile, credentials to said clusters needs to be exposed.
Nephio Security has defined an architecture using SPIFFE/SPIRE.
This task is about implementing this between FOCOM and IMS.
At the time of writing this tasks, there is a lot of unknown as to how to implement. Please update this description as the low-level design matures.
Target architecture document: https://docs.google.com/presentation/d/1kofOHWswM2_OJPfefTcSzVvsBAg0QE3Z7GQITlaPO2w/edit#slide=id.p
Upon a
ClusterRequest, the IMS controller will either create a cluster, or identify an existing cluster. In order for the FOCOM to interact with the created cluster through O2DMS K8s profile, credentials to said clusters needs to be exposed.Nephio Security has defined an architecture using SPIFFE/SPIRE. This task is about implementing this between FOCOM and IMS.
At the time of writing this tasks, there is a lot of unknown as to how to implement. Please update this description as the low-level design matures.