kubermatic icon indicating copy to clipboard operation
kubermatic copied to clipboard
verified publisher icon kubermatic

Seed OIDC with different domains

Open wozniakjan opened this issue 2 years ago • 0 comments

Description of the feature you would like to add / User story

As a KKP admin, I would like to be able to configure different domains for different seed OIDC in order to allow KKP users to have multitenant configuration for shared KKP master.

Solution details

  • support OIDC on seed level with different domains for each seed/master

Alternative approaches

n/a

Use cases

The https://github.com/kubermatic/kubermatic/issues/11316 implemented configuring OIDC on seed level, however, there are known and partially documented limitations - https://github.com/kubermatic/docs/pull/1343, such as the email domain has to match between master OIDC and seed OIDC configuration.

Additional information

wozniakjan avatar Dec 05 '23 11:12 wozniakjan