[COMPASS-7494] Investigate changes in PM-3513: (Backport) Internal Authorization for OIDC Created: 29/Nov/23 Updated: 04/Jan/24 |
|
| Status: | Needs Triage |
| Project: | Compass |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Investigation | Priority: | Major - P3 |
| Reporter: | Backlog - Core Eng Program Management Team | Assignee: | Unassigned |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||
| Epic Link: | COMPASS-7523 | ||||
| Description |
|
Original Downstream Change Summary This project will backport support for internal authorization with OIDC authentication to v7.0. This would allow clients which possess access tokens without roles to authenticate to the server. Access rights are stored in user documents persisted in the server. Description of Linked TicketEpic Summary SummaryThis project will backport the feature implemented in PM-3385 to the v7.0 LTS branch. MotivationPM-3385 introduced support for internal authorization for OIDC authenticated clients. This feature simplified administration of clusters using OIDC for workload federation. Atlas configures this feature on Federations, and not necessarily at the level of individual clusters. If some clusters support internal authorization and some do not, Atlas administrators will have an inconsistent experience. DocumentationProduct Description |
| Comments |
| Comment by PM Bot [ 04/Jan/24 ] |
|
Fix Version updated for upstream PM-3513: |
| Comment by PM Bot [ 11/Dec/23 ] |
|
Fix Version updated for upstream PM-3513: |