Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add teleport-operator to mc-bootstrap #2845

Closed
Tracked by #2463
tuladhar opened this issue Sep 21, 2023 · 2 comments
Closed
Tracked by #2463

Add teleport-operator to mc-bootstrap #2845

tuladhar opened this issue Sep 21, 2023 · 2 comments
Assignees
@tuladhar
Labels
component/mc-bootstrap team/bigmac Team BigMac

Comments

@tuladhar
Copy link

tuladhar commented Sep 21, 2023
edited
Loading

Deploy teleport-operator as part of MC creation to ensure creation of teleport join token before we pivot from Kind to infrastructure provider (AWS, GCP, etc).
@tuladhar tuladhar mentioned this issue Sep 21, 2023
Open
@tuladhar tuladhar self-assigned this Sep 21, 2023
@tuladhar tuladhar changed the title Add teleport-operator to mc-boostrap Add teleport-operator to mc-bootstrap Sep 21, 2023
@tuladhar tuladhar mentioned this issue Oct 19, 2023
Merged
1 task
@tuladhar
Copy link
Author

tuladhar commented Nov 8, 2023

As discussed with the team, we will be using short-lived certificate through Machine ID, teleport-operator no longer needs to be added to mc-bootstrap cause we won't be using static credential.

However, we get into chicken-egg problem, because cluster provider chart references a token which is created by teleport-operator, and since, Machine ID only works when Kubernetes API is ready, we will be creating a dummy teleport join token secret to unblock cluster provider chart, and later when teleport-operator is deployed via app collection, we roll out nodes again.

I think it's not ideal solution, but so far this is what we come up with, until we figure out a better way.

@tuladhar
Copy link
Author

tuladhar commented Nov 9, 2023

PR ready for review:

✅ All generate MC checks are passing.

@teemow teemow added this to Roadmap Nov 20, 2023
@teemow teemow moved this to In Progress ⛏️ in Roadmap Nov 20, 2023
@github-project-automation github-project-automation bot moved this from In Progress ⛏️ to Done ✅ in Roadmap Nov 21, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tuladhar tuladhar

Labels
component/mc-bootstrap team/bigmac Team BigMac
Projects
Roadmap
Archived in project
Milestone
No milestone
Development

No branches or pull requests
1 participant
@tuladhar