feat, docs: merge KF-5546-oidc-provider-dev-branch into main

* docs: add Limitations section on README (#166) * feat: integrate with dex-oidc-config interface and remove public-url (#163)
canonical · Jul 26, 2024 · 294d6c1 · 294d6c1
2 parents 9917334 + 2b39ad0
commit 294d6c1
Show file tree

Hide file tree

Showing 11 changed files with 549 additions and 66 deletions.
diff --git a/README.md b/README.md
@@ -10,12 +10,18 @@ This repository hosts the Kubernetes Python Operator for OIDC Gatekeeper
 
 The OIDC Gatekeeper Operator may be deployed using the Juju command line as follows
 ```bash
-juju deploy oidc-gatekeeper
-juju config oidc-gatekeeper client-secret=<client-secret> public-url=http://<public-url>
+juju deploy oidc-gatekeeper --trust
+juju deploy dex-auth --trust
+juju config oidc-gatekeeper client-secret=<client-secret, optional>
+juju integrate dex-auth:dex-oidc-config oidc-gatekeeper:dex-oidc-config
 ```
 
 Upstream documentation can be found at https://github.com/arrikto/oidc-authservice
 
+## Limitations
+
+This charm has been designed around Charmed Kubeflow and it will not work as an OIDC client outside of a model where `dex-auth` and Charmed Kubeflow are deployed. There are currently no plans to change this behaviour.
+
 ## Looking for a fully supported platform for MLOps?
 
 Canonical [Charmed Kubeflow](https://charmed-kubeflow.io) is a state of the art, fully supported MLOps platform that helps data scientists collaborate on AI innovation on any cloud from concept to production, offered by Canonical - the publishers of [Ubuntu](https://ubuntu.com).

diff --git a/charmcraft.yaml b/charmcraft.yaml
@@ -12,3 +12,4 @@ bases:
 parts:
   charm:
     charm-python-packages: [setuptools, pip]
+    build-packages: [cargo, rustc, pkg-config, libffi-dev, libssl-dev]
diff --git a/config.yaml b/config.yaml
@@ -14,10 +14,6 @@ options:
     type: string
     default: ''
     description: OpenID Connect client secret
-  public-url:
-    type: string
-    default: ''
-    description: Publicly-accessible endpoint for cluster
   oidc-scopes:
     type: string
     default: 'profile email groups'
@@ -41,4 +37,4 @@ options:
   userid-claim:
     type: string
     default: 'email'
-    description: OpenID Connect claim whose value will be used as the userid.
+    description: OpenID Connect claim whose value will be used as the userid.
-Original file line number
+Diff line change
@@ Expand Up / @@ -12,3 +12,4 @@ bases: @@
     parts:
       charm:
         charm-python-packages: [setuptools, pip]
+        build-packages: [cargo, rustc, pkg-config, libffi-dev, libssl-dev]