Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support --apiserver-host and --apiserver-skip-tls-verify in Auth module #9352

Open
leonjyq opened this issue Aug 13, 2024 · 0 comments
Open

Support --apiserver-host and --apiserver-skip-tls-verify in Auth module #9352

leonjyq opened this issue Aug 13, 2024 · 0 comments
Labels
kind/feature Categorizes issue or PR as related to a new feature.

Comments

@leonjyq
Copy link
Contributor

leonjyq commented Aug 13, 2024

What would you like to be added?

For the dashboard auth module, I would like to be able to specify the --apiserver-host and --apiserver-skip-tls-verify like what we can do in API module.

Why is this needed?

Below is the solution we want to implement, we specify the api host to kube-oidc-proxy to leverage its capability for impersonating the request with Azure AD group. API module supports specifying the api host, but Auth module can't. This causes that Auth module will talk to Kubernetes API server directly instead of kube-oidc-proxy, and Kubernetes API server doesn't acknowledge the token signed by Dex.
image
@leonjyq leonjyq added the kind/feature Categorizes issue or PR as related to a new feature. label Aug 13, 2024
@leonjyq leonjyq mentioned this issue Aug 13, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/feature Categorizes issue or PR as related to a new feature.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@leonjyq