Has anyone integrated Flyte with JumpCloud as an I...
# ask-the-communityg
Guy Harel
09/26/2023, 11:18 AMHas anyone integrated Flyte with JumpCloud as an IDP? I'm having trouble with the integration and it appears from the Flyte logs that they are returning a userinfo object that isn't compliant (email_verified as a string instead of a boolean) but I'm not sure..
Guy Harel
09/26/2023, 12:10 PMBTW, support for email_verified as a string instead of a boolean, which appears to be a common pitfall for even large IDP's such as AWS Cognito and Apple, has been added in coreos/go-oidc v3 (with this commit). Flyte is still using v2, any plans on upgrading?
k
Ketan (kumare3)
09/26/2023, 1:11 PM
I have not heard of anyone using jumocloud. It’s crazy number of idps and all are slightly different
Ketan (kumare3)
09/26/2023, 1:12 PM
Cc @Haytham Abuelfutuh maybe we can upgrade but will take a bit
h
Haytham Abuelfutuh
09/26/2023, 5:47 PM
Thanks for reporting that, @Guy Harel. Auth has been challenging given how different IdPs and different companies set it up... It's still a striking difference compared to pre-Oauth2 world but still a ways to go before it becomes really compatible (if ever!)
Here is a quick PR to address the upgrade: https://github.com/flyteorg/flyteadmin/pull/618
There doesn't seem to be any obvious API breaking changes... will need to work on validating the change before we get this in. But I do appreciate a second set of eyes on this.
g
Guy Harel
09/27/2023, 6:56 AMThanks @Haytham Abuelfutuh, I would gladly help test out the change if you can provide a flyte-binary image URL. We are currently using the helm chart flyte-binary-v1.9.1.
h
Haytham Abuelfutuh
09/29/2023, 6:52 PM
@Guy Harel sorry it took this long, here is the single binary version: ghcr.io/flyteorg/flyte-binary:sha-a45a7f8eef92a48dc4a0fb885d079275a5ef3d57
g
Guy Harel
10/30/2023, 10:49 AMHi @Haytham Abuelfutuh, bumping this, is there an ETA on the PR (https://github.com/flyteorg/flyte/pull/4139) ?
Unfortunately I haven't had a chance to try the new image yet, we are using Terraform and Helm so I would need it embedded in a Helm chart...
k
Ketan (kumare3)
10/30/2023, 2:21 PM
Cc @Eduardo Apolinario (eapolinario)
e
Eduardo Apolinario (eapolinario)
10/31/2023, 10:09 PMI updated the monorepo PR: https://github.com/flyteorg/flyte/pull/4139. A new single-binary image is also being built to help testing.
h
Haytham Abuelfutuh
11/28/2023, 1:21 AM
Updated the PR, will merge when it's ready
g
Guy Harel
12/14/2023, 9:38 AMThank you @Eduardo Apolinario (eapolinario) and @Haytham Abuelfutuh for pushing this through, I confirm that v1.10.6 works with JumpCloud :)
h
Hal Wolin
02/29/2024, 7:59 PM@Guy Harel Were you able to to get the Flyteconsole, Flytectl, and Flytepropeller setup in Jumpcloud? Or only the authorization for user access?
g
Guy Harel
02/29/2024, 8:00 PMHi @Hal Wolin, only the user access. I went with the built-in authentication for the rest.
h
Hal Wolin
02/29/2024, 8:02 PMThanks. What did you setup the other app integrations? I'm referencing the "hard" directions here:https://github.com/davidmirror-ops/flyte-the-hard-way/blob/main/docs/aws/10-prepare-for-auth.md
g
Guy Harel
02/29/2024, 8:04 PMI deployed using the flyte-binary helm chart, so I'm not sure exactly what it provisioned
h
Hal Wolin
02/29/2024, 8:12 PMThanks
11 Views