[RFE] Enable LDAP-Keystone auth on Windows (and MacOS)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Kubernetes Control Plane Charm |
Triaged
|
Wishlist
|
Unassigned |
Bug Description
Looking into how we use keystone-ldap integration on k8s, I can see that we have two possible ways:
1) Follow docs on ubuntu:
https:/
That means we need to run the following script to authenticate: https:/
2) client-
https:/
Both are fine for Ubuntu or main Linux distributions, maybe even MacOS with shell script (although the later I've never tried).
However, that does not port easily to Windows.
The issue is that ldap auth will happen on customer client machine, which can be anything.
My suggestion is to move those separate scripts to one single source, using only Python.
That way, .kube/config may run it with "python my_pip_
We have no Windows support for this. To do this on Windows, you'd need to:
1. download Windows binary for kubectl keystone- auth
2. compile Windows binary for client-
3. port kube-keystone.sh to something that works on Windows (PowerShell?)
We have no immediate plans to do any of this.
My suggestion would be for these client commands to be run in a Multipass VM or WSL shell on the Windows workstation.