Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

feat (workload identity): [aks-ingress] migrate pod to workload identity #66

Merged
merged 14 commits into from
Dec 13, 2022
Merged

feat (workload identity): [aks-ingress] migrate pod to workload identity #66

merged 14 commits into from
Dec 13, 2022

Conversation

ferantivero
Copy link
Contributor

closes: #24723

WHY?

we do want to move all our aks baseline from aad pod identity manually installed or via add-ons to workload identity.

WHAT changed?

  • migrate from AAD Pod Identity to Azure Workload Identity (Add on)
  • minor bug fixings

HOW to test?

as a user you can now clone the aks regulated baseline repository, follow the instructions and the cluster stamp v2 will create federated credentials identity subject to the nginx ingress controller service account and enable the workload identity add on in the aks regulated cluster.

you can deploy the cluster end to end and validate it is working as expected.

@ferantivero ferantivero changed the title feat (workload identity): [ingress] migrate pod to workload indentiy feat (workload identity): [aks-ingress] migrate pod to workload indentiy Oct 28, 2022
@ckittel ckittel changed the title feat (workload identity): [aks-ingress] migrate pod to workload indentiy feat (workload identity): [aks-ingress] migrate pod to workload identity Nov 11, 2022
@ferantivero ferantivero force-pushed the feature/24723_migrate-workload-identity branch from bdc67e6 to 62c1b36 Compare December 2, 2022 16:11
@ferantivero ferantivero force-pushed the feature/24723_migrate-workload-identity branch from 62c1b36 to afda4db Compare December 2, 2022 16:12
@ferantivero ferantivero force-pushed the feature/24723_migrate-workload-identity branch from afda4db to b4c7112 Compare December 5, 2022 19:39
@ferantivero ferantivero force-pushed the feature/24723_migrate-workload-identity branch from b4c7112 to 1129d95 Compare December 5, 2022 19:41
@ferantivero ferantivero marked this pull request as ready for review December 5, 2022 19:44
@ferantivero ferantivero requested a review from ckittel December 6, 2022 19:31
ckittel
ckittel requested changes Dec 6, 2022
View reviewed changes
ckittel
ckittel approved these changes Dec 7, 2022
View reviewed changes
Copy link
Member

@ckittel ckittel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Everything looks great. I do have one question here... it's optional to change, and figured I'd let you decide.

@ckittel ckittel mentioned this pull request Dec 7, 2022
Closed
@ferantivero ferantivero merged commit 9cd382f into main Dec 13, 2022
@ferantivero ferantivero deleted the feature/24723_migrate-workload-identity branch December 13, 2022 16:23
@ferantivero ferantivero mentioned this pull request Jan 18, 2023
Merged
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@ckittel ckittel ckittel approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ferantivero @ckittel