estenrye
commented
8 months ago As a user, I should be able to provide Rackspace SPOT OIDC client credentials for any OIDC provider of my choice.
I should be able to configure Rackspace SPOT to automatically grant the appropriate role of Admin user vs End User based on a group membership claim.
I should be able to create a Kubernetes RBAC Role or ClusterRole that can be mapped to an OIDC group membership claim and be used in either a RoleBinding or ClusterRole binding to control what Kubernetes resources and permissions are granted to users.
As a user, I should be able to invite other users to collaborate with my account on Spot.
I should be able to differentiate admin users vs end users with limited rights.