Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Core Feature] Flyte Security Context #800

Closed
EngHabu opened this issue Mar 5, 2021 · 1 comment
Closed

[Core Feature] Flyte Security Context #800

EngHabu opened this issue Mar 5, 2021 · 1 comment
Assignees
@kumare3
Labels
enhancement New feature or request
Milestone
0.12.0

Comments

@EngHabu
Copy link
Contributor

EngHabu commented Mar 5, 2021

Motivation: Why do you think this is important?
Flyte launches many entities through different execution engines, defining what identity each one should impersonate when executing has been one of the confusing aspects of using Flyte. Let's step back, define what the right model is based on what we know today and make sure it works across the stack.

Goal: What should the final outcome look like, ideally?

  1. Works with Tasks that run on pods, remote containers (e.g. AWS Batch) where you have user's custom code that runs and need an identity to communicate with other resources as well as metadata tasks (e.g. SQL Queries, WebAPI calls... etc.) where the execution of user's code is more controlled.
  2. Defaults can be set at Task level but should be overridable at LaunchPlan and Execution levels
  3. Support passing secrets, IAM and k8s service accounts.
@EngHabu EngHabu added enhancement New feature or request untriaged This issues has not yet been looked at by the Maintainers labels Mar 5, 2021
@EngHabu EngHabu added this to the 0.12.0 milestone Mar 5, 2021
@EngHabu EngHabu mentioned this issue Mar 5, 2021
Merged
3 tasks
This was referenced Mar 13, 2021
Merged
Merged
Merged
Merged
@kumare3 kumare3 self-assigned this Mar 16, 2021
@kumare3 kumare3 removed the untriaged This issues has not yet been looked at by the Maintainers label Mar 16, 2021
@kumare3 kumare3 mentioned this issue Mar 16, 2021
Merged
8 tasks
This was referenced Mar 18, 2021
Merged
Closed
Merged
Merged
Merged
Closed
@kumare3
Copy link
Contributor

kumare3 commented Mar 24, 2021

This is merged and will be available in the next platform release (it is available in the nightly build) - Example: https://github.com/flyteorg/flytesnacks/blob/master/cookbook/core/intermediate/use_secrets.py

@kumare3 kumare3 closed this as completed Mar 24, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kumare3 kumare3

Labels
enhancement New feature or request
Projects
None yet
Milestone
0.12.0
Development

No branches or pull requests
2 participants
@EngHabu @kumare3