Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support application credential auth for Openstack swift #6255

Merged
merged 1 commit into from
Oct 28, 2024
Merged

Support application credential auth for Openstack swift #6255

merged 1 commit into from
Oct 28, 2024

Conversation

SungJin1212
Copy link
Member

@SungJin1212 SungJin1212 commented Oct 8, 2024
edited
Loading

Currently, the only way to auth is to use username/password when users use Swift backend. But there is a case where users don't know their OpenStack account but application credentials issued by others (administrators of Openstack account, they don't want to expose Openstack account's username/password). To address this concern, support an application credential auth for OpenStack swift backend so that users can auth in various ways (username/password or application credential).

Which issue(s) this PR fixes:
Fixes #

Checklist

  • Tests updated
  • Documentation added
  • CHANGELOG.md updated - the order of entries should be [CHANGE], [FEATURE], [ENHANCEMENT], [BUGFIX]

@dosubot dosubot bot added the backend/swift label Oct 8, 2024
@SungJin1212 SungJin1212 force-pushed the Add-application-credential-to-swift branch 2 times, most recently from 60975f9 to decf611 Compare October 12, 2024 23:53
yeya24
yeya24 approved these changes Oct 27, 2024
View reviewed changes
Copy link
Contributor

@yeya24 yeya24 left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am not too familiar with Swift. Is this PR basically exposing thanos-io/objstore#32? Then LGTM.

Let's fix changelog conflict

@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Oct 27, 2024
@SungJin1212 SungJin1212 force-pushed the Add-application-credential-to-swift branch from decf611 to 4645f3a Compare October 28, 2024 00:41
@SungJin1212
Copy link
Member Author

SungJin1212 commented Oct 28, 2024
edited
Loading

@yeya24
Thanks for the review.
The reason I make this pr is that, in practice, whenever I configure Swift, it is inconvenient to ask username/password to someone.

For example, the OpenStack admin would want to secretly manage username/password and issue an application credential containing the metric write/read (example) role. Users can use issued application credentials when configuring Cortex.

@yeya24 yeya24 merged commit 8a95aed into cortexproject:master Oct 28, 2024
16 checks passed
CharlieTLe pushed a commit to CharlieTLe/cortex that referenced this pull request Dec 3, 2024
@SungJin1212 @CharlieTLe
Support application credential auth for Openstack swift (cortexprojec…
71067c5 
…t#6255)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yeya24 yeya24 yeya24 approved these changes

Assignees
No one assigned
Labels
backend/swift lgtm This PR has been approved by a maintainer size/L
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@SungJin1212 @yeya24