Add Identity Provider CA to kubeconfig

vmware-archive / gangway

An application that can be used to easily enable authentication flows via OIDC for a kubernetes cluster.

Apache License 2.0

410 stars 111 forks source link

Open vijaykatam opened 4 years ago

vijaykatam commented 4 years ago

This change enables usage of self signed cert for the IdP by providing a config idpCAPath in the config map.

Signed-off-by: Vijay Katam vkatam@vmware.com

jenting commented 4 years ago

From my point of view, IdentityProviderCA is the same as TrustedCAPath since it should both points the same server, am I right?

If yes, then all we have to do is embed the TrustedCA into idp-certificate-authority-data. WDYT?

echupriyanov commented 4 years ago

Any plans to finish this PR?

stevesloka commented 4 years ago

Hey @vijaykatam would you mind rebasing this as well as looking at the comments + failing tests? Thanks!