[OSDOCS-14567] Doc Story for Cross-Project Federated Identity Authentication for OSD-GCP #96854
Conversation
openshift-ci
bot
added
the
size/XS
|
🤖 Wed Aug 06 13:27:22 - Prow CI generated the docs preview: https://96854--ocpdocs-pr.netlify.app/openshift-dedicated/latest/osd_gcp_clusters/creating-a-gcp-cluster-with-workload-identity-federation.html |
osd_planning/gcp-ccs.adoc
Outdated
| @@ -23,6 +23,7 @@ include::modules/osd-gcp-psc-firewall-prerequisites.adoc[leveloffset=+1] | |||
| == Additional resources | |||
|
|
|||
| * xref:../support/remote_health_monitoring/about-remote-health-monitoring.adoc#about-remote-health-monitoring[About remote health monitoring] | |||
| <<<<<<< HEAD | |||
There was a problem hiding this comment.
🤖 [error] RedHat.MergeConflictMarkers: Do not commit Git merge conflict markers in source code. For more information, see RedHat.MergeConflictMarkers.
mletalie
changed the title
openshift-ci
bot
added
size/S
mletalie
force-pushed
the
OSDOCS-14567
branch
2 times, most recently
from
4f2dfea to
cc3320d
Compare
|
@shreyansvm,
Please let me know if there are any other pertinent details that you think needs to be added to the docs. I will be creating a release note for this feature and add it to this PR ASAP. Thanks! |
osd_whats_new/osd-whats-new.adoc
Outdated
|
|
||
| === Q3 2025 | ||
| * ** Support for managing workload identity pools and providers in a dedicated {GCP} project.** | ||
| {product-title} on {GCP} now supports the option of creating and managing workload identity pools and providers in a specified dedicated project during the creation of a WIF configuration. For more information, see xref:../osd_gcp_clusters/creating-a-gcp-cluster-with-workload-identity-federation.adoc#create-wif-configuration_osd-creating-a-cluster-on-gcp-with-workload-identity-federation[Creating a WIF configuration]. |
There was a problem hiding this comment.
🤖 [error] OpenShiftAsciiDoc.XrefContainsAnchorID: The xref is missing an anchor ID.
|
We don;t need any additional permissions to create workload identity pools in a separate GCP project other than where the cluster gets installed.
Check the notes on this new optional parameter in the DDR: https://docs.google.com/document/d/1J4cd8IRW2wSFHSFBdS5g99kWst_kXU_Qu-SLYPlB_c0/edit?tab=t.0#heading=h.96e7yab648bk There are no changes to the OCM UI. @ckandag : Can you also review this PR? When phase-2/milestone-2 XCMSTRAT-1320 is implemented, we need to add similar details on "--federated-project" to the "..update wif-config.." command. 
|
|
I noticed that you have already added details on "--federated-project" later in the document. Sorry, didn't notice this in the first place.
|
mletalie
force-pushed
the
OSDOCS-14567
branch
4 times, most recently
from
a1ec55f to
a7a0807
Compare
|
|
||
| === Q3 2025 | ||
| * ** Support for managing workload identity pools and providers in a dedicated {GCP} project.** | ||
| {product-title} on {GCP} now supports the option of creating and managing workload identity pools and providers in a specified dedicated project during the creation of a WIF configuration. Red{nbsp}Hat plans on offering this option for existing WIF configurations in an upcoming release. For more information, see xref:../osd_gcp_clusters/creating-a-gcp-cluster-with-workload-identity-federation.adoc#create-wif-configuration_osd-creating-a-cluster-on-gcp-with-workload-identity-federation[Creating a WIF configuration]. |
There was a problem hiding this comment.
🤖 [error] OpenShiftAsciiDoc.XrefContainsAnchorID: The xref is missing an anchor ID.
modules/create-wif-cluster-cli.adoc
Outdated
| ---- | ||
| <1> Replace `<wif_name>` with the name of your WIF configuration. | ||
| <2> Replace `<gcp_project_id>` with the ID of the {GCP} project where the WIF configuration will be implemented. | ||
| <3> Optional: Replace `<osd_version>` with the desired {product-title} version the wif-config will need to support. If you do not specify a version, the wif-config will support the latest {product-title} y-stream version as well as the last three supported {product-title} y-stream versions (beginning with version 4.17). | ||
| <4> Optional: Replace `<gcp_project_id>` with the ID of the dedicated project where the workload identity pools and providers will be created and managed. If `--federated-project` is not specified, the workload identity pools and providers will be created and managed in the project specified by the `--project flag`. |
There was a problem hiding this comment.
| <4> Optional: Replace `<gcp_project_id>` with the ID of the dedicated project where the workload identity pools and providers will be created and managed. If `--federated-project` is not specified, the workload identity pools and providers will be created and managed in the project specified by the `--project flag`. | |
| <4> Optional: Replace `<gcp_project_id>` with the ID of the dedicated project where the workload identity pools and providers will be created and managed. If the `--federated-project` flag is not specified, the workload identity pools and providers will be created and managed in the project specified by the `--project` flag. |
|
@mletalie: all tests passed! Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
Version(s):
4.19+
Issue:
https://issues.redhat.com/browse/OSDOCS-14567
Link to docs preview:
https://96854--ocpdocs-pr.netlify.app/openshift-dedicated/latest/osd_gcp_clusters/creating-a-gcp-cluster-with-workload-identity-federation.html#create-wif-configuration_osd-creating-a-cluster-on-gcp-with-workload-identity-federation
https://96854--ocpdocs-pr.netlify.app/openshift-dedicated/latest/osd_whats_new/osd-whats-new.html#osd-q2-2025_osd-whats-new
QE review:
Additional information: