You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Move current commands for up config and profile to working against the new config - most likely we can just mimic the same commands that kubectl currently offers.
Within the kubeconfig, we could:
set contexts for cloud versus a space.
set contexts for the different environments.
use the auth block for authenticating with the target.
In general this will benefit current consumers and future consumers:
For those familiar with kubectl, they get a familiar API to work against.
If you're working with a control plane or a space, bouncing between up and kubectl becomes less of a mental switch.
The text was updated successfully, but these errors were encountered:
I love the idea that you're thinking this through!!! ❤️ I agree that this is one of the more confusing bits of the up CLI.
I'm not an expert with the Kubeconfig schema, so a couple of questions that may be stupid:
Would we use the same kubeconfig that kubectl uses? Would it cause confusion for the Upbound SaaS to be listed there? It's not something that kubectl could use as normal.
Today, up login stores the session ID in the configuration file. Is there a place for that in the kubeconfig? Would it a token in the AuthInfo? (I'm not really pushing for a technical decision, just making sure it's feasible.)
Same question for the account/org.
One question I often have is "what is my config pointing at? Is it Upbound SaaS, a Space, or a control plane?" Would we have a way to annotate that in the config, so we could help customers know? Or would they just use the name of the Kubernetes cluster and figure it out from there?
@AlainRoy all good questions. I think we have a number of options with how we could address those concerns/questions. If we get buy in that this is reasonable enough to move to do a one pager/POC, we can explore possible answers to each of those.
What problem are you facing?
As usage has grown for
up
, we've gone through a few different phases of attempts to manage authentication/contexts with different systems:This has left us in a state where:
How could Upbound help solve your problem?
This issue proposes that we replace the config and profile constructs with kubeconfig semantics:
Within the kubeconfig, we could:
In general this will benefit current consumers and future consumers:
The text was updated successfully, but these errors were encountered: