#10241 Port apps to OIDC
Opened a year ago by zlopez. Modified 3 months ago

Describe what you would like us to do:


We still have apps that are not yet using OIDC for authentication. It would be nice to add support to them, so we are no longer blocked by this tech debt.

Here is the list of the apps that still needs to be ported:
Apps CPE owns and are critical
pagure (Already implemented, but needs changes in ipsilon. See https://pagure.io/fedora-infrastructure/issue/7377 for more details)
mirrormanager
bodhi
noggin
PDC (PDC will be probably retired in future)
FMN

Apps CPE hosts and are critical
Mailman3 / HK
OSBS
* MBS

Apps CPE hosts and aren't critical
COPR
nuancier
* testdays

It's possible that some of them are already ported over to OIDC (especially those we don't host), it needs to be checked.

When do you need this to be done by? (YYYY/MM/DD)


Not urgent.


also, not sure about noggin -- it uses neither openid or openid connect

the MBS readme states that it uses OIDC:

https://pagure.io/fm-orchestrator#setting-up-kerberos-ldap-authentication

or is there something i am missing here?

Ok, some of these are not actaully needed, see inline comments

Describe what you would like us to do:


We still have apps that are not yet using OIDC for authentication. It would be nice to add support to them, so we are no longer blocked by this tech debt.

Here is the list of the apps that still needs to be ported:
Apps CPE owns and are critical
pagure (Already implemented, but needs changes in ipsilon. See https://pagure.io/fedora-infrastructure/issue/7377 for more details)
mirrormanager
bodhi
noggin

Noggin doesnt use openid or oidc

  • PDC (PDC will be probably retired in future)
  • FMN

Apps CPE hosts and are critical
* Mailman3 / HK

  • OSBS
    OSBS doesnt use openid it seems
  • MBS

MBS uses oidc already apparently

Apps CPE hosts and aren't critical
COPR
nuancier
* testdays
doenst use openid or oidc

It's possible that some of them are already ported over to OIDC (especially those we don't host), it needs to be checked.

When do you need this to be done by? (YYYY/MM/DD)


Not urgent.

Okay, here is the curated list:


[backlog refinement]
Here is the up to date list:

[Backlog refinement]
There is a CPE initiative team working on the rewrite of FMN, which should address this issue as well.

Login to comment on this ticket.

Metadata
Boards 2
dev Status: Backlog
mini-initative Status: Backlog