Description
Identity Provider Configuration in the Platform Mesh Security Operator
The security operator currently provides the ability to define how the identity configuration is generated, and the operator picks up the correct configuration automatically.
We now need to allow users to define an upstream identity provider. The current process for this is manual and needs to be automated.
This configuration data needs to be sourced from somewhere. Most likely, we need a way to pass identity provider configuration information to the upstream provider at the account level.
Previously, we had the cross plane approach for handling this, but that functionality has not been carried over to the identity provider approach (security operator). This gap needs to be addressed as part of the platform mesh security operator.
Objectives
- enable users to define how authentication is done in their organization from within platform mesh (don't need to leave platform mesh, with an upstream identity provider that the organization already has)
- The identify provider configuration needs to support this.
- Need to define the data path and the user experience for that.
- Ensure that we use OIDC standards, that way we can use DEX or Keycloack
Demo Required
None
Demo Steps
Yes please.
Description
Identity Provider Configuration in the Platform Mesh Security Operator
The security operator currently provides the ability to define how the identity configuration is generated, and the operator picks up the correct configuration automatically.
We now need to allow users to define an upstream identity provider. The current process for this is manual and needs to be automated.
This configuration data needs to be sourced from somewhere. Most likely, we need a way to pass identity provider configuration information to the upstream provider at the account level.
Previously, we had the cross plane approach for handling this, but that functionality has not been carried over to the identity provider approach (security operator). This gap needs to be addressed as part of the platform mesh security operator.
Objectives
Demo Required
None
Demo Steps
Yes please.