Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WIP: Add CI to test authn-k8s using OpenShift DeploymentConfigs #112

Closed
wants to merge 2 commits into from
Closed

WIP: Add CI to test authn-k8s using OpenShift DeploymentConfigs #112

wants to merge 2 commits into from

Conversation

diverdane
Copy link
Contributor

@diverdane diverdane commented Oct 14, 2020
edited
Loading

WIP: This change adds a test for using DeploymentConfigs OpenShift resources
as application identity for Conjur authn-k8s authentication.

This change will allow the authn-k8s plugin to compare an application's DeploymentConfig
with DeploymentConfigs that are permitted (via annotatoins) in Conjur policy.

Addresses Issue #115

@diverdane diverdane self-assigned this Oct 14, 2020
@diverdane diverdane force-pushed the test_oc_deploy_configs branch from 4e62f25 to 524dccb Compare October 14, 2020 12:13
@diverdane diverdane marked this pull request as draft October 14, 2020 12:14
@diverdane diverdane force-pushed the test_oc_deploy_configs branch from 524dccb to 3d3caea Compare October 14, 2020 12:40
Adds CI for testing annotation-based authn on OpenShift with DAP
a216c61 
The current CI test cases test authn-k8s on OpenShift platforms using
host-ID-based authentication. This change adds test cases for testing
authn-k8s on OpenShift using DAP and the newer-style, annotation-based
authentication, where the Kubernetes resources being authenticated are
configured as annotations on the host definition in the Conjur policy.

Addresses Issue #109
@diverdane diverdane mentioned this pull request Oct 23, 2020
Merged
Test oc DeploymentConfigs
dd80dae 
This change adds a test for using DeploymentConfigs OpenShift resources
as application identity for Conjur authn-k8s authentication.

This change depends upon a change in a change to the kubernetes-conjur-deploy
scripts:
    cyberark/kubernetes-conjur-deploy#158
This will allow the authn-k8s plugin to compare an application's
DeploymentConfig with DeploymentConfigs that are permitted (via annotations)
in Conjur policy.

Addresses Issue #115
@diverdane diverdane force-pushed the test_oc_deploy_configs branch from 3d3caea to dd80dae Compare October 23, 2020 15:23
@diverdane diverdane changed the title WIP: Test oc deploy configs WIP: Add CI to test authn-k8s using OpenShift DeploymentConfigs Oct 23, 2020
@andytinkham
Copy link
Contributor

Closing as stale.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@diverdane diverdane

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@diverdane @andytinkham