Add support for AWS SSO #246
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This commit adds support for AWS SSO, were the user can add EKS clusters by using the AWS SSO flow. For that the user have to provide a start URL for the SSO flow, his account id, a role name and the AWS region. When the user has provided all of these details a new client will be created which the user has to verify. As last step he can use the new client to import all of his EKS clusters. Currently the returned access token is valid for around 8 hours, after that time the user have to redo the complete authentication flow. For that we should add a reauthentication method to the edit cluster page, like it was done for Google and OIDC.
Closed
It is now possible to edit the AWS SSO credentials for a cluster and to re-authenticate when the access token is expired. We are also supporting AWS SSO when the SSO config and the Kubernetes cluster are using different regions, for this the user must now provide the SSO region and the cluster region during the setup.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This commit adds support for AWS SSO, were the user can add EKS clusters by using the AWS SSO flow. For that the user have to provide a start URL for the SSO flow, his account id, a role name and the AWS region. When the user has provided all of these details a new client will be created which the user has to verify. As last step he can use the new client to import all of his EKS clusters.
Closes #239.