-
Notifications
You must be signed in to change notification settings - Fork 1.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Structured Authentication Config #3331
Comments
/sig auth |
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs. This bot triages issues and PRs according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale |
Hello @nabokihms 👋, 1.26 Enhancements team here. Just checking in as we approach enhancements freeze on 18:00 PDT on Thursday 6th October 2022. This enhancement is targeting for stage Here's where this enhancement currently stands:
It looks #3332 will address most of these issues. The status of this enhancement is marked as |
/milestone v1.27 |
Hi, enhancements lead here - I inadvertently added this to the 1.32 tracking board 😀. Please readd it if you wish to progress this enhancement in 1.32. /remove-label lead-opted-in |
Hello @aramase @enj 👋, Enhancements team here. Just checking in as we approach enhancements freeze on 02:00 UTC Friday 11th October 2024 / 19:00 PDT Thursday 10th October 2024. This enhancement is targeting for stage Here's where this enhancement currently stands:
For this KEP, we would just need to update the following:
The status of this enhancement is marked as If you anticipate missing enhancements freeze, you can file an exception request in advance. Thank you! |
PRR reviewer here. Is this still targeting v1.32? The PRR deadline is Thursday. Is there anything I can review? |
@jpbetz This is going to stay beta in v1.32. We're opting it in, so we can make code changes for defaulting, validation and metrics in v1.32. There is no change in the KEP. I have #4844 open to update the latest milestone to |
Sounds good. No need for PRR on this one for 1.32 then. Thanks! |
@tjons can you mark this as tracked for code freeze, all KEP / milestone changes for 1.32 are merged |
With all requirements met this enhancement is now |
Question... It looks like the discovery url can only be HTPS. For better integration with SPIFFE, it would be very nice if it could refer to a unix socket that speaks HTTP to gather the JWKS info. Would this be ok? Should that be discussed/added here, or should I open up another issue? |
Hi @aramase, @enj 👋, I'm James Spurin, a 1.32 Docs Shadow. Great to meet you. Does this enhancement work planned for 1.32 require any new docs or modifications to the existing docs? If so, please follows the steps here to open a PR against dev-1.32 branch in the k/website repo. This PR can be just a placeholder at this time and must be created before Thursday October 24th 2024 18:00 PDT. Also, take a look at Documenting for a release to familiarise with the docs requirement for the release. Thank you! |
Hello hello @nabokihms @aramase @enj 👋 from the v1.32 Communications Team! We'd love for you to consider writing a feature blog about your enhancement. To opt-in, let us know by opening a Feature Blog placeholder PR against the website repository by 30th Oct 2024. For more information about writing a blog see the blog contribution guidelines. Note: In your placeholder PR, use |
The docs changes have already merged: kubernetes/website#47821. I don't have permissions to update the issue. |
This will be worked on in 1.33 but stay in beta |
Enhancement Description
k/enhancements
) update PR(s): KEP-3331: Structured Authentication Config #3332k/k
) update PR(s):--authentication-config
flag kubernetes#119142k/website
) update PR(s): add docs for StructuredAuthenticationConfig v1alpha1 website#43397k/enhancements
) update PR(s):k/k
) update PR(s):StructuredAuthenticationConfiguration
feature to kube feature gates file kubernetes#121622AudienceMatchPolicy
and support multiple audiences in AuthenticationConfiguration kubernetes#123165apiserver_authentication_jwt_authenticator_latency_seconds
metric kubernetes#123225DiscoveryURL
to Authentication Configuration kubernetes#123527k8s.io
andkubernetes.io
namespaced extra key in structured authn config kubernetes#126553k/website
) update(s):Please keep this description up to date. This will help the Enhancement Team to track the evolution of the enhancement efficiently.
The text was updated successfully, but these errors were encountered: