github-ldap-user-group-creator

command

v0.0.0-...-257a958 Latest Latest Go to latest Published: Apr 26, 2024 License: Apache-2.0 Imports: 31 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

github-ldap-user-group-creator is a tool to maintain the groups on CI clusters.

The groups are used

by ci-operator which promotes the group to the admins of the namespace created for the test.
in the manifests of CI clusters in the release repo.

github-ldap-user-group-creator reads

the mapping files generated by sync-rover-groups that stores the mapping from github-id to its Red Hat kerberos-id and for each github-id, creates a group github-id-group on each cluster.
the groups file generated by sync-rover-groups that stores the group names and their members from the Red Hat LDAP server and for each group creates a group on each cluster.

This tool is also responsible for deleting the users and their identities on all clusters when they no longer exist in Rover.

Note
Users that are not part of any group or don't have their github account linked in their Rover profile are deleted as well.

The periodic job periodic-github-ldap-user-group-creator (definition) uses github-ldap-user-group-creator to create the groups. The service account RBACs are defined in admin_github-ldap-user-group-creator_rbac.yaml

There is no documentation for this package.