AWS OIDC Integration Dashboard

[marcoandredinis]

We should give the user the visibility and management tools, so they can understand the current status and fix/change any configuration related to the Integration.
The following components must be part of this dashboard.

AWS App Access

Whether the AWS App Access is enabled for the integration.
Users should be able to enable or disable the AWS App.
Enabling it will redirect them to the Discover flow.

RDS, EC2 and EKS

RDS databases, EC2 instances and EKS clusters can be enrolled and accessed from teleport.

Enrollment is done by creating a new DiscoveryConfig associated with an existing DiscoveryService's DiscoveryGroup (self-hosted users must manage their own DiscoveryService).
The dashboard must show the DiscoveryConfig rules created for each type of resource.

For RDS, the flow deploys a Database Service in user's AWS Account using Amazon ECS.
Users should see how many database agents deployed in ECS exist (name, teleport version, config, ...).

_{Listing ECS Services requires a region. In order to get the region we'll use two sources: a) regions in use by the DiscoveryConfig rules; b) regions in use by the onboarded RDS databases}

Tasks

Tasks will allow users to see which resources failed to enroll.
When opening the Integration, users should see how many tasks exists and possibly open the Tasks view.

Final design (internal only)
https://www.figma.com/design/v6GunK50D2VC7w7I2FBDNf/Access-(Management)?node-id=4143-2783&node-type=canvas&t=r1DInS5qFyYyH1vw-0

Dashboard

Beta Give feedback

1. AWS OIDC: Remove App Server that uses the integration credentials #42012
   backport/branch/v15 backport/branch/v16 no-changelog size/sm +4
2. Discovery Config Status: allow for other Fetchers to contribute to the global Status #43861
   backport/branch/v16 discovery no-changelog size/sm +4
3. Add DiscoveryConfigStatus field for AWS EC2 Resources #43862
   backport/branch/v16 no-changelog size/sm +3
4. Revert "Add DiscoveryConfigStatus field for AWS EC2 Resources (#43862)" #44540
   no-changelog size/sm +2
5. Add DiscoveryConfigStatus AWS EC2 resource counters (proto) #45553
   backport/branch/v16 discover no-changelog size/sm +4
6. DiscoveryConfigStatus: summary for AWS EC2 instances found #45637
   backport/branch/v16 discover discovery no-changelog size/md +5
7. DiscoveryConfig Status: add summary fields for RDS and EKS #48985
   backport/branch/v16 backport/branch/v17 discover no-changelog size/sm +5
8. Add Integration and DiscoveryConfig as labels to auto discovered RDS/EKS #48986
   backport/branch/v16 backport/branch/v17 database-access discover discovery no-changelog size/md +7
9. Update DiscoveryConfigStatus with EKS and RDS enrollment summary #48991
   backport/branch/v16 backport/branch/v17 discover no-changelog +4
10. HTTP Endpoint to return Integration Summary (Dashboard) #48994
    backport/branch/v16 backport/branch/v17 no-changelog +3

Tasks

Beta Give feedback

1. Add User Tasks resource - protos #46059
   backport/branch/v16 no-changelog size/md +3
2. User Tasks: services and clients implementation #46131
   backport/branch/v16 no-changelog size/xl tctl +4
3. User Tasks: add discover-ec2 task type #47062
   backport/branch/v16 no-changelog size/md +3
4. UserTasks: List by Integration service method #47327
   backport/branch/v16 no-changelog size/sm +3
5. WebAPI: list User Tasks and mark as resolved #47329
   backport/branch/v16 no-changelog size/md +3
6. https://github.com/gravitational/cloud/pull/10703
7. prehog: add user_task_state event proto #47380
   backport/branch/v16 no-changelog size/md +3
8. Emit UsageEvent for UserTask State changes #47391
   backport/branch/v16 no-changelog size/md +3
9. Create DiscoverEC2 User Tasks when Auto Discover fails on EC2 instances #47064
   backport/branch/v16 discovery no-changelog size/md +4
10. Add UserTask audit events #47496
    audit-log backport/branch/v16 no-changelog size/md ui +5
11. UserTasks: Add SSM Document and Installer for DiscoverEC2 Issues #47626
    backport/branch/v16 discovery no-changelog size/sm +4
12. Add instance name to DiscoverEC2 User Task failed instances list #47712
    backport/branch/v16 discovery no-changelog size/md +4
13. Add debugging steps for DiscoverEC2 User Task issues #47513
    backport/branch/v16 backport/branch/v17 do-not-merge no-changelog size/md +5
14. Emit notifications when creating User Task for a given Integration #47556
    backport/branch/v16 backport/branch/v17 discover discovery do-not-merge no-changelog size/md +7
15. Create User Task for: missing policies, missing ssm document, ...