Has anyone integrated Flyte with JumpCloud as an I...
# flyte-supportt
tall-ram-83532
09/26/2023, 11:18 AMHas anyone integrated Flyte with JumpCloud as an IDP? I'm having trouble with the integration and it appears from the Flyte logs that they are returning a userinfo object that isn't compliant (email_verified as a string instead of a boolean) but I'm not sure..
tall-ram-83532
09/26/2023, 12:10 PMBTW, support for email_verified as a string instead of a boolean, which appears to be a common pitfall for even large IDP's such as AWS Cognito and Apple, has been added in coreos/go-oidc v3 (with this commit). Flyte is still using v2, any plans on upgrading?
f
freezing-airport-6809
09/26/2023, 1:11 PM
I have not heard of anyone using jumocloud. It’s crazy number of idps and all are slightly different
freezing-airport-6809
09/26/2023, 1:12 PM
Cc @high-park-82026 maybe we can upgrade but will take a bit
h
high-park-82026
09/26/2023, 5:47 PM
Thanks for reporting that, @tall-ram-83532. Auth has been challenging given how different IdPs and different companies set it up... It's still a striking difference compared to pre-Oauth2 world but still a ways to go before it becomes really compatible (if ever!)
Here is a quick PR to address the upgrade: https://github.com/flyteorg/flyteadmin/pull/618
There doesn't seem to be any obvious API breaking changes... will need to work on validating the change before we get this in. But I do appreciate a second set of eyes on this.
t
tall-ram-83532
09/27/2023, 6:56 AMThanks @high-park-82026, I would gladly help test out the change if you can provide a flyte-binary image URL. We are currently using the helm chart flyte-binary-v1.9.1.
h
high-park-82026
09/29/2023, 6:52 PM
@tall-ram-83532 sorry it took this long, here is the single binary version: ghcr.io/flyteorg/flyte-binary:sha-a45a7f8eef92a48dc4a0fb885d079275a5ef3d57
t
tall-ram-83532
10/30/2023, 10:49 AMHi @high-park-82026, bumping this, is there an ETA on the PR (https://github.com/flyteorg/flyte/pull/4139) ?
Unfortunately I haven't had a chance to try the new image yet, we are using Terraform and Helm so I would need it embedded in a Helm chart...
f
freezing-airport-6809
10/30/2023, 2:21 PM
Cc @high-accountant-32689
h
high-accountant-32689
10/31/2023, 10:09 PMI updated the monorepo PR: https://github.com/flyteorg/flyte/pull/4139. A new single-binary image is also being built to help testing.
h
high-park-82026
11/28/2023, 1:21 AM
Updated the PR, will merge when it's ready
t
tall-ram-83532
12/14/2023, 9:38 AMThank you @high-accountant-32689 and @high-park-82026 for pushing this through, I confirm that v1.10.6 works with JumpCloud :)
🔥 2
👍 1
b
bumpy-ghost-16726
02/29/2024, 7:59 PM@tall-ram-83532 Were you able to to get the Flyteconsole, Flytectl, and Flytepropeller setup in Jumpcloud? Or only the authorization for user access?
t
tall-ram-83532
02/29/2024, 8:00 PMHi @bumpy-ghost-16726, only the user access. I went with the built-in authentication for the rest.
b
bumpy-ghost-16726
02/29/2024, 8:02 PMThanks. What did you setup the other app integrations? I'm referencing the "hard" directions here:https://github.com/davidmirror-ops/flyte-the-hard-way/blob/main/docs/aws/10-prepare-for-auth.md
t
tall-ram-83532
02/29/2024, 8:04 PMI deployed using the flyte-binary helm chart, so I'm not sure exactly what it provisioned
b
bumpy-ghost-16726
02/29/2024, 8:12 PMThanks
17 Views