Has anyone integrated Flyte with JumpCloud as an IDP? I'm having trouble with the integration and it appears from the Flyte logs that they are returning a userinfo object that isn't compliant (email_verified as a string instead of a boolean) but I'm not sure..
BTW, support for email_verified as a string instead of a boolean, which appears to be a common pitfall for even large IDP's such as AWS Cognito and Apple, has been added in coreos/go-oidc v3 (with this commit). Flyte is still using v2, any plans on upgrading?
k
Ketan (kumare3)
09/26/2023, 1:11 PM
I have not heard of anyone using jumocloud. It’s crazy number of idps and all are slightly different
Cc @Haytham Abuelfutuh maybe we can upgrade but will take a bit
h
Haytham Abuelfutuh
09/26/2023, 5:47 PM
Thanks for reporting that, @Guy Harel. Auth has been challenging given how different IdPs and different companies set it up... It's still a striking difference compared to pre-Oauth2 world but still a ways to go before it becomes really compatible (if ever!)
Here is a quick PR to address the upgrade: https://github.com/flyteorg/flyteadmin/pull/618
There doesn't seem to be any obvious API breaking changes... will need to work on validating the change before we get this in. But I do appreciate a second set of eyes on this.
g
Guy Harel
09/27/2023, 6:56 AM
Thanks @Haytham Abuelfutuh, I would gladly help test out the change if you can provide a flyte-binary image URL. We are currently using the helm chart flyte-binary-v1.9.1.
Hi @Haytham Abuelfutuh, bumping this, is there an ETA on the PR (https://github.com/flyteorg/flyte/pull/4139) ?
Unfortunately I haven't had a chance to try the new image yet, we are using Terraform and Helm so I would need it embedded in a Helm chart...