-
Notifications
You must be signed in to change notification settings - Fork 480
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat!: Change identity source for secrets-config proxy adduser/deluser #4389
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Note to reviewers: Since this is a significant rewrite to the proxy subcommands, it is probably best to view the changed files in their entirety rather than try to make sense of the difference.
Need to remove unit test specific to the snap:
|
Codecov Report
📣 This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more @@ Coverage Diff @@
## main #4389 +/- ##
==========================================
- Coverage 43.71% 42.80% -0.91%
==========================================
Files 116 115 -1
Lines 10712 10428 -284
==========================================
- Hits 4683 4464 -219
+ Misses 5609 5563 -46
+ Partials 420 401 -19
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
Please help merge canonical/edgex-snap-testing#160 in order to remove the roadblock for this PR. |
BREAKING CHANGE: Remove secrets-config proxy jwt subcommand and change the adduser/deluser commands so that they create vault identities and logins in Vault instead of creating them in Kong. This change will make it impossible to create a JWT that works with Kong proxy, and will break security-enabled TAF tests. This is the third commit in a sequence of commits to implement the microservice authentication (token-based) ADR. Signed-off-by: Bryon Nevis <bryon.nevis@intel.com>
Signed-off-by: Bryon Nevis <bryon.nevis@intel.com>
Kudos, SonarCloud Quality Gate passed!
|
Closing - review #4244 instead. |
BREAKING CHANGE: Remove secrets-config proxy jwt subcommand and change the adduser/deluser commands so that they create vault identities and logins in Vault instead of creating them in Kong. This change will make it impossible to create a JWT that works with Kong proxy, and will break security-enabled TAF tests.
This is the third commit in a sequence of commits to implement the microservice authentication (token-based) ADR.
PR Checklist
Please check if your PR fulfills the following requirements:
BREAKING CHANGE:
describing the break)Testing Instructions
Install the following script and run it to create a user. It is self testing, so if it outputs a JWT then it succeeded.
New Dependency Instructions (If applicable)