WIP: Support OIDC Client Authentication

[dmolik]

Globally support OIDC Client Authentication, this is for output sinks proxied by something like OAuth2-Proxy

• attempt to support .well-known/oidc-configuration

What type of PR is this?

/kind feature

Any specific area of the project related to this PR?

/area config

/area outputs

What this PR does / why we need it:

Which issue(s) this PR fixes:

Fixes #712

Special notes for your reviewer:

[poiana]

Welcome @dmolik! It looks like this is your first PR to falcosecurity/falcosidekick 🎉

[dmolik]

so this is just a first stab at OIDC output support, I'm looking for feedback on approach, and I know I will need to update tests and documentation

[Issif]

Can you avoid to bump up the Go version please, to avoid to break anything aside.

[dmolik]

this was pulled in from the kube 1.29 version bump

[Issif]

Interesting proposal, thnaks. I edited the title to specify it's a WIP, ping when you want a deeper review. Thanks. I enabled the CI btw.

[poiana]

Adding label do-not-merge/contains-merge-commits because PR contains merge commits, which are not allowed in this repository.
Use git rebase to reapply your commits on top of the target branch. Detailed instructions for doing so can be found here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[poiana]

LGTM label has been added.

Git tree hash: e3c4fa41292b36ea2a39a75d580d3986d6e4e9e6

[Issif]

/remove-approve

[poiana]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dmolik
Once this PR has been reviewed and has the lgtm label, please ask for approval from issif. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[Issif]

(sorry, a miss click in the GH app on phone made me approved this PR)

[dmolik]

okay no worries, I've got to rebase this against master, and add config and docs

[Issif]

What's the status on your side for this PR? Is it ready for a review?

[dmolik]

I'm going to merge main again, and test locally via minikube, I'll let you know in a day or two.

[Issif]

Hi,

are you still working on that PR?

[poiana]

Issues go stale after 90d of inactivity.

Mark the issue as fresh with /remove-lifecycle stale.

Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Provide feedback via https://github.com/falcosecurity/community.

/lifecycle stale

[dmolik]

/remove-lifecycle stale

[Issif]

@dmolik are you still working on this PR? you need to rebase on the master, a lot of changes have been made since your last commits. I would like to release the 2.30 in the next weeks, I prefer to post-pone your proposal to the 2.31 anyway