You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A client without any scopes is disallowed; ideally we shouldn't even
create a Maskinporten client if the spec only defines scopes to be
exposed and none consumed.
This commit adds a default consumer scope for the Maskinporten client if
none are defined. Ideally, the "exposed scope" directive should be split out
into its own resource and reconciler rather than being tied directly to a
MaskinportenClient resource.
Other pain points with tying exposure of scopes to a single MaskinportenClient:
ownership becomes unclear:
multiple application manifests may define the same scope, but the source of truth is the last applied manifest
what happens if the same application in the same namespace, but in different clusters have the same exposed scope?
tracking desired and actual state becomes difficult (e.g. how do we determine that a scope should be deleted?)
The text was updated successfully, but these errors were encountered:
Ref. b2652a5:
Other pain points with tying exposure of scopes to a single MaskinportenClient:
The text was updated successfully, but these errors were encountered: