Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement SSO (Epic) #260

Open
Tracked by #227
jhmarina opened this issue Dec 5, 2022 · 0 comments
Open
Tracked by #227

Implement SSO (Epic) #260

jhmarina opened this issue Dec 5, 2022 · 0 comments
Labels
area/docs Related with documentation in general area/rgw-sfs RGW & SFS related area/tests Related to tests and testing area/ui User Interface kind/epic Umbrella issue for a group of related issues kind/feature New functionality or support for something triage/proposal for closure There are reasons for this issue to be closed

Comments

@jhmarina
Copy link
Contributor

jhmarina commented Dec 5, 2022
edited by jecluis

Description

As s3gw is deployed in the field, we must consider users will find the need to maintain the same set of credentials for multiple s3gw instances, may they be in the same cluster or, potentially, across clusters.

It becomes a chore to maintain multiple s3gw instances' credentials in sync.

Supporting Single Sign-On would enable users of s3gw to manage their credentials centrally, and having the various s3gw UI's all relying on the same authority.

Similarly, by supporting STS (#229) we could potentially issue temporary tokens for direct access to an s3gw instance.

We should consider that this topic needs further research to understand how this can be implemented, or stitched together with existing solutions.

For reference, RGW already supports some IAM solutions:

Success criteria

  • Users are able to login into multiple s3gw UI instances sharing the same centralized credentials
  • Users are able to obtain STS temporary credentials to access multiple s3gw instances for S3 operations
  • The effort has been properly tested
  • There is appropriate documentation

More information

### Tasks
@jecluis jecluis added the kind/epic Umbrella issue for a group of related issues label Feb 8, 2023
@jhmarina jhmarina changed the title ⛰ Implement SSO (Epic) Implement SSO (Epic) May 8, 2023
@jecluis jecluis added priority/2 To be prioritized according to impact area/ui User Interface area/rgw-sfs RGW & SFS related area/tests Related to tests and testing kind/feature New functionality or support for something area/docs Related with documentation in general labels Oct 31, 2023
@jecluis jecluis mentioned this issue Oct 31, 2023
Open
3 tasks
@jecluis jecluis added triage/proposal for closure There are reasons for this issue to be closed and removed priority/2 To be prioritized according to impact labels Mar 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/docs Related with documentation in general area/rgw-sfs RGW & SFS related area/tests Related to tests and testing area/ui User Interface kind/epic Umbrella issue for a group of related issues kind/feature New functionality or support for something triage/proposal for closure There are reasons for this issue to be closed
Projects
s3gw
Status: No status
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jecluis @jhmarina