Skip to content

add proposal of cloudhub enhancement #5512

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kubeedge-bot merged 1 commit into from
Jul 16, 2024
Merged

add proposal of cloudhub enhancement #5512

kubeedge-bot merged 1 commit into from
Jul 16, 2024

Conversation

@spambot000
Copy link
Contributor

@spambot000 spambot000 commented Apr 6, 2024

What type of PR is this?

/kind design

What this PR does / why we need it:

Add proposal of cloudhub enhancement

Which issue(s) this PR fixes:

Fixes #5456

Special notes for your reviewer:

Does this PR introduce a user-facing change?:

@spambot000 spambot000 force-pushed the cloudhub_authorization_proposal branch from 1d5ba77 to 92b8629 Compare April 6, 2024 19:34
wbc6080
wbc6080 reviewed Apr 9, 2024
View reviewed changes
docs/proposals/cloudhub-enhancement.md Outdated
Comment on lines 15 to 21
#### Goal
- Alpha

Support node authorization mode. CloudCore can restrict an edge node from operating the resources owned by other edge nodes.
- Beta

Support RBAC authorization mode. KubeEdge users can utilize RBAC configurations to limit the access to their custom resources.
Copy link
Collaborator

@wbc6080 wbc6080 Apr 9, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It would be better to add the version in which feature would be implemented. For example, Alpha features will be implemented in version 1.17, and Beta features will be implemented in version 1.18.

@Shelley-BaoYue Shelley-BaoYue added this to the v1.17 milestone Apr 10, 2024
@spambot000 spambot000 force-pushed the cloudhub_authorization_proposal branch from 92b8629 to ee2a00a Compare May 3, 2024 14:17
@kubeedge-bot kubeedge-bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label May 3, 2024
@spambot000 spambot000 force-pushed the cloudhub_authorization_proposal branch 2 times, most recently from 5fa8366 to 360ae82 Compare May 3, 2024 15:49
@spambot000
Copy link
Contributor Author

spambot000 commented May 3, 2024
edited
Loading

@Shelley-BaoYue @wbc6080
I've updated the proposal. The previous one is difficult to implement and maintaince. The current version utilizes both User Impersonation and NodeAuthorizer.

@Shelley-BaoYue Shelley-BaoYue modified the milestones: v1.17, v1.18 Jun 6, 2024
@spambot000 spambot000 force-pushed the cloudhub_authorization_proposal branch 2 times, most recently from 794a3c9 to 694fb09 Compare June 22, 2024 10:49
@spambot000
add proposal of cloudhub enhancement
ba16d78 
Signed-off-by: spambot000 <jkjkjk0306@163.com>
@spambot000 spambot000 force-pushed the cloudhub_authorization_proposal branch from 694fb09 to ba16d78 Compare June 22, 2024 10:52
@spambot000
Copy link
Contributor Author

spambot000 commented Jun 22, 2024

Added new image to explains implementation details.

Shelley-BaoYue
Shelley-BaoYue reviewed Jul 16, 2024
View reviewed changes
Copy link
Collaborator

@Shelley-BaoYue Shelley-BaoYue left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@kubeedge-bot kubeedge-bot added the lgtm Indicates that a PR is ready to be merged. label Jul 16, 2024
@WillardHu
Copy link
Collaborator

WillardHu commented Jul 16, 2024

/approve

@kubeedge-bot
Copy link
Collaborator

kubeedge-bot commented Jul 16, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: WillardHu

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@kubeedge-bot kubeedge-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jul 16, 2024
@kubeedge-bot kubeedge-bot merged commit e57adde into kubeedge:master Jul 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wbc6080 wbc6080 wbc6080 left review comments

@Shelley-BaoYue Shelley-BaoYue Shelley-BaoYue left review comments

Assignees

No one assigned

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.

Projects

None yet

Milestone

v1.18

Development

Successfully merging this pull request may close these issues.

Add admission for some operations from edge to cloud

5 participants

@spambot000 @WillardHu @kubeedge-bot @wbc6080 @Shelley-BaoYue