Matt Moyer
Matt Moyer
I'm using the default `aws` profile with a one-off SSH keypair name and setting `KUBICORN_FORCE_DELETE_KEY=true`. `kubicorn apply` works fine, but when I `kubicorn delete`, Kubicorn is able to clean up...
The current README doesn't contrast with other libraries and doesn't do a good job explaining why this is better than rolling your own.
We're trying to understand roughly how many concurrent users the Concierge can support in the default configuration, as well as what kind of latency overhead is introduced by Pinniped compared...
Today: generate bare minimum of k8s audit events, but drop them - Is this worth doing? This is a duplication of the actual API server audit logs. - If it...
GitHub supports an OAuth2-based flow, but is not an OIDC provider and does not work with our current APIs. We should support GitHub as a first-class IDP including group support.
Google login works today via the OIDCIdentityProvider CRD, but lacks group support since Google does not include groups in the ID token. We should add first-class support for Google as...
We have some controllers such as the Supervisor "upstream watcher" controllers that defined condition "reason" codes. These are effectively part of our public API. We should make sure that all...
Remove the field we deprecated in https://github.com/vmware-tanzu/pinniped/issues/461.
The set implementation in [`helper/schema/set.go`](https://github.com/hashicorp/terraform/blob/8cf13d9582309f45e4a04cd4cd36e717b5b60c75/helper/schema/set.go) produces incorrect results if elements in the set have colliding hash code values. This should be relatively rare in practice because the size of the...
```gherkin Scenario: malformed userSearch Given I have the Supervisor installed When I create a LDAPIdentityProvider with a malformed `userSearch` field And I look at the status of my LDAPIdentityProvider Then...