User Story: Adding Kube-login to Kube-OIDC-Proxy

[Bhoomiz01]

As a Kubernetes administrator,
I want to integrate Kube-login with our existing Kube-OIDC-Proxy cluster,
So that users can authenticate more securely with a streamlined process.

Description:

Our modified Kube-OIDC-Proxy cluster already utilizes Keycloak for authentication. Kube-login is already set up, and we aim to enable users to authenticate easily using a browser-based flow. This integration ensures that authentication tokens are handled automatically and securely.

Acceptance Criteria:

1. Step 1: Authenticate with Kube-login

   • Run a kubectl command, such as:

     kubectl get pods

   • You will be redirected to your default browser for authentication via Keycloak.
   • Log in with your credentials and complete any MFA steps if required.
   • Once authentication is complete, return to the terminal.

2. Step 2: Verify Login

   • Use kubectl to access Kubernetes resources without additional authentication steps:

     kubectl get pods

   • Confirm that the command runs successfully and the cluster is accessible.

3. Step 3: Troubleshooting

   • If login fails, check the Kube-login logs for error messages related to Keycloak integration or token expiration.

[tapanbavaliya]

@Bhoomiz01 @chintansakhiya looks good, can u also add update data flow diagram.

@Bhoomiz01 make sure you can able to test this or taken demo to checkmark acceptance criteria.

Ty