You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@guacamole.apache.org by "Bolke de Bruin (JIRA)" <ji...@apache.org> on 2018/11/10 11:42:00 UTC

[jira] [Created] (GUACAMOLE-658) Launch Kubernetes (X)RDP pods with OpenID Connect injected credentials

Bolke de Bruin created GUACAMOLE-658:
----------------------------------------

             Summary: Launch Kubernetes (X)RDP pods with OpenID Connect injected credentials
                 Key: GUACAMOLE-658
                 URL: https://issues.apache.org/jira/browse/GUACAMOLE-658
             Project: Guacamole
          Issue Type: New Feature
            Reporter: Bolke de Bruin


Hi,

We would like to leverage Gaucamole to launch secure isolated XRDP pods on k8s / openshift.

So imagine a user logs in into gaucamole with OpenID connect and is then able to launch his personal Pod that has his user configured in the Pod. Upon logout the Pod will be destroyed (configurable).

Configuring the user could happen similary to "cloudinit" where in this case guacamole would function as a metadata server or by injecting the oauth token directly into the Pod and then having the pod update itself.

It would require gaucamole to be able to launch, destroy and monitor pods and maybe function as a metadata server.

 



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)