Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add OIDC support #671

Merged
merged 31 commits into from May 20, 2024
Merged

Add OIDC support #671

merged 31 commits into from May 20, 2024

Conversation

adambarreiro
Copy link
Collaborator

@adambarreiro adambarreiro commented May 7, 2024
edited

Overview

This PR adds CRUD methods to manage OpenID Connect (OIDC) settings for a given Organization in VCD.

Details

OIDC can be configured in VCD for the System org (/provider) or for each tenant. When configuring it, users can set a "Well-known Endpoint" that serves all the configuration values for OIDC to be configured automatically or in an easier way.
If the "Well-known Endpoint" is not used, all values must be provided manually.

The settings that are retrieved from the "Well-known Endpoint" can also be overridden.

Testing

Tests require two new configuration entries that correspond to a running OIDC server.

Tested in 10.5.1 and 10.4.0

@adambarreiro
Init
95f8d14 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Types
aa2a8f5 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
#
d6ac1d3 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Progress with OIDC
605b75b 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Create and delete seems to work
05fcc2b 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
#
a50da5e 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Refactor tests
7311b49 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
#
4b44090 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
#
e98d017 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Extract config
137defe 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
#
27652d2 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Merge
71eb62a 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Fix bugs, tests pass
6c82fe5 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Improve tests
ca11233 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Fix
abf731a 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
#
b447beb 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Refactor, tests fail
02e7b41 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Tests pass
2df9532 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Refactor
3c54e3d 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Refactor
4128460 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Self-review
8eb11d1 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro adambarreiro self-assigned this May 7, 2024
@adambarreiro
Fix bug
d0f10c2 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Fix typo
2acc530 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Validate connections
a4a8a34 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Validate connections
d4ef6fc 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Fix VCD < 10.5.1
0b48862 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Change retry mechanism
b90268a 
Signed-off-by: abarreiro <abarreiro@vmware.com>
dataclouder
dataclouder reviewed May 13, 2024
View reviewed changes
.changes/v2.25.0/671-features.md Outdated Show resolved Hide resolved
govcd/org_oidc.go Outdated Show resolved Hide resolved
govcd/org_oidc.go Outdated Show resolved Hide resolved
govcd/org_oidc.go Outdated Show resolved Hide resolved
@adambarreiro
Apply suggestion
e5cdcf6 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Change to cmp.Or
63e8466 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Bump Go in check-security
9ef03e8 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro
Bump staticcheck
7cbe199 
Signed-off-by: abarreiro <abarreiro@vmware.com>
@adambarreiro adambarreiro merged commit e752b45 into vmware:main May 20, 2024
2 checks passed
@adambarreiro adambarreiro deleted the add-oidc-support branch May 20, 2024 07:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lvirbalas lvirbalas lvirbalas approved these changes

@dataclouder dataclouder dataclouder approved these changes

@Didainius Didainius Didainius approved these changes

Assignees

@adambarreiro adambarreiro

Labels
cla-not-required
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@adambarreiro @lvirbalas @dataclouder @Didainius @vmwclabot