It would be nice to be able to configure your authentication system of choice via the tower/awx custom resource. This could look something like:
tower_authentcation:
ldap:
.... some set of ldap settings/filters ....
.... potentially some custom CA if necessaryy ....
I agree with this, likely better to have this defined as a secret that you can supply to the cluster in order to keep secret bits of this out of the CR itself.
Agreed. I was thinking something along the lines of non-sensitive information being provided in the CR and then any necessary crednetials being stored in a secret, with the CR just pointing to the secret that should be used.
Yep, I just went through this with the postgres configuration and secret key... it wouldn't be a big jump to get to that point with this.
Hi everyone! Any news on this subj? It would be really handy if we can template authentication configuration.
note: The LDAP certificate piece was addressed by https://github.com/ansible/awx-operator/pull/157
This should already be covered with this: https://github.com/ansible/awx-operator/blob/devel/roles/installer/templates/config.yaml.j2#L92-L98
Please comment and reopen if that doesn't work for you.
Most helpful comment
Yep, I just went through this with the postgres configuration and secret key... it wouldn't be a big jump to get to that point with this.