You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@guacamole.apache.org by "Bolke de Bruin (JIRA)" <ji...@apache.org> on 2018/11/10 11:42:00 UTC
[jira] [Created] (GUACAMOLE-658) Launch Kubernetes (X)RDP pods with
OpenID Connect injected credentials
Bolke de Bruin created GUACAMOLE-658:
----------------------------------------
Summary: Launch Kubernetes (X)RDP pods with OpenID Connect injected credentials
Key: GUACAMOLE-658
URL: https://issues.apache.org/jira/browse/GUACAMOLE-658
Project: Guacamole
Issue Type: New Feature
Reporter: Bolke de Bruin
Hi,
We would like to leverage Gaucamole to launch secure isolated XRDP pods on k8s / openshift.
So imagine a user logs in into gaucamole with OpenID connect and is then able to launch his personal Pod that has his user configured in the Pod. Upon logout the Pod will be destroyed (configurable).
Configuring the user could happen similary to "cloudinit" where in this case guacamole would function as a metadata server or by injecting the oauth token directly into the Pod and then having the pod update itself.
It would require gaucamole to be able to launch, destroy and monitor pods and maybe function as a metadata server.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)