]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 094fc18) | patch
mgr/cephadm: adding oauth2-proxy cephadm service 58460/head
authorRedouane Kachach <rkachach@ibm.com>
Tue, 2 Jul 2024 15:28:40 +0000 (17:28 +0200)
committerRedouane Kachach <rkachach@ibm.com>
Wed, 14 Aug 2024 11:53:08 +0000 (13:53 +0200)
commit677affcbf548cb2a432695e824b9cd8c2a70dbe1
tree5061f1c9354174a8a984856b08f7d4d831ed75cctree | snapshot
parent094fc1836fd6ffe8ed96904d2e8dc388c3e46289commit | diff
mgr/cephadm: adding oauth2-proxy cephadm service

adding new oauth2-proxy service. The enable_auth flag enables SSO
authentication via the oauth2-proxy service. The user must ensure the
oauth2-proxy service is deployed before enabling this flag in the
mgmt-gateway service.

FQDN related changes: previously, we were obtaining the FQDN using a
call to the Python socket library run inside the container. While this
generally works, the FQDN returned inside a container can sometimes
differ from the one obtained outside the container. This discrepancy
could cause some issues. To ensure consistency, we now use the FQDN
from the inventory, which provides the correct value as recognized on the host.

Signed-off-by: Redouane Kachach <rkachach@ibm.com>
24 files changed:
doc/cephadm/services/index.rst diff | blob | history
doc/cephadm/services/oauth2-proxy.rst [new file with mode: 0644] blob
src/cephadm/cephadm.py diff | blob | history
src/cephadm/cephadmlib/constants.py diff | blob | history
src/cephadm/cephadmlib/daemons/__init__.py diff | blob | history
src/cephadm/cephadmlib/daemons/oauth2_proxy.py [new file with mode: 0644] blob
src/pybind/mgr/cephadm/http_server.py diff | blob | history
src/pybind/mgr/cephadm/inventory.py diff | blob | history
src/pybind/mgr/cephadm/module.py diff | blob | history
src/pybind/mgr/cephadm/services/cephadmservice.py diff | blob | history
src/pybind/mgr/cephadm/services/mgmt_gateway.py diff | blob | history
src/pybind/mgr/cephadm/services/monitoring.py diff | blob | history
src/pybind/mgr/cephadm/services/oauth2_proxy.py [new file with mode: 0644] blob
src/pybind/mgr/cephadm/templates/services/grafana/grafana.ini.j2 diff | blob | history
src/pybind/mgr/cephadm/templates/services/mgmt-gateway/external_server.conf.j2 diff | blob | history
src/pybind/mgr/cephadm/templates/services/mgmt-gateway/internal_server.conf.j2 diff | blob | history
src/pybind/mgr/cephadm/templates/services/mgmt-gateway/nginx.conf.j2 diff | blob | history
src/pybind/mgr/cephadm/templates/services/oauth2-proxy/oauth2-proxy.conf.j2 [new file with mode: 0644] blob
src/pybind/mgr/cephadm/tests/fixtures.py diff | blob | history
src/pybind/mgr/cephadm/tests/test_cephadm.py diff | blob | history
src/pybind/mgr/cephadm/tests/test_services.py diff | blob | history
src/pybind/mgr/orchestrator/_interface.py diff | blob | history
src/pybind/mgr/orchestrator/module.py diff | blob | history
src/python-common/ceph/deployment/service_spec.py diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.