Hi Dmitry,
I think its good to remove it from our side. One thing to clarify for better understanding is that when you say remove no-auth, you mean removing it from ironic deployment files in BMO repo, right ?
BRKashif
From: metal...@googlegroups.com <metal...@googlegroups.com> on behalf of Dmitry Tantsur <dtan...@redhat.com>
Sent: Thursday, January 27, 2022 6:37 PM
To: Metal3 Development List <metal...@googlegroups.com>
Subject: [metal3-dev] RFC: remove support for deployments without authentication?--Hi folks,
Does anyone have a use case for deploying Ironic without authentication? I'm struggling to come up with one. Removing no-auth mode will somewhat simplify the deployment files.
Dmitry
--
Red Hat GmbH, https://de.redhat.com/ , Registered seat: Grasbrunn,
Commercial register: Amtsgericht Muenchen, HRB 153243,
Managing Directors: Charles Cachera, Brian Klemm, Laurie Krebs, Michael O'Neill
You received this message because you are subscribed to the Google Groups "Metal3 Development List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to metal3-dev+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/metal3-dev/CACNgkFzdaSR98Njvca9C1gr9wwM5AsE%2BT8h_YpmAsLkBPRRKBA%40mail.gmail.com.
I have been thinking the same thing and would also like to simplify this.
As someone quite new to the project, I would like to know if there is a point in reopening the discussion about decoupling BMO and Ironic? My understanding is that the need for authentication came when BMO was bundled with CAPM3 and separated from Ironic. Now that BMO is again separate from CAPM3, would it make sense to "merge" the BMO and Ironic pods?
The design doc mentions loopback interface (same pod) as an alternative to authentication but didn't make sense at the time, I guess. Would it make sense now or is it better to keep them separated and drop the no-auth option?