Machine ID: Add bitbucket join method for Bitbucket Pipelines joining
#48724
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This adds a new `bitbucket` join method that Machine ID bots can use to authenticate to Teleport from Bitbucket Pipelines CI runs.
zmb3
reviewed
Nov 10, 2024
This also fully adds `deployment_environment_uuid` which was found to be missing.
…t-pipelines-joining
|
🤖 Vercel preview here: https://docs-hl9n6zvuq-goteleport.vercel.app/docs/ver/preview |
github-actions
bot
requested review from
bernardjkim,
hugoShaka,
marcoandredinis,
mmcallister,
ptgott,
r0mant,
tigrato,
xinding33 and
zmb3
|
@timothyb89 - this PR will require admin approval to merge due to its size. Consider breaking it up into a series smaller changes. |
|
🤖 Vercel preview here: https://docs-hzp7pdojr-goteleport.vercel.app/docs/ver/preview |
public-teleport-github-review-bot
bot
removed request for
bernardjkim,
mmcallister,
ptgott,
r0mant and
xinding33
|
🤖 Vercel preview here: https://docs-pg96y6ii0-goteleport.vercel.app/docs |
|
🤖 Vercel preview here: https://docs-p0hyichos-goteleport.vercel.app/docs |
|
🤖 Vercel preview here: https://docs-peb5ift37-goteleport.vercel.app/docs |
github-merge-queue
bot
removed this pull request from the merge queue due to failed status checks
github-merge-queue
bot
removed this pull request from the merge queue due to failed status checks
|
@timothyb89 See the table below for backport results.
|
timothyb89
added a commit
that referenced
this pull request
Nov 21, 2024
…ng (#48724) * Add `bitbucket` join method for Bitbucket Pipelines joining This adds a new `bitbucket` join method that Machine ID bots can use to authenticate to Teleport from Bitbucket Pipelines CI runs. * Add unit tests for bitbucket joining This also fully adds `deployment_environment_uuid` which was found to be missing. * Fix imports * Update tf docs * Docs update * Update generated TF resources * Attempt to work around docs linter * Add provision token tests * Remove pipeline_uuid and step_uuid from protos Also, fix deploment_environment_uuid field name. * Remove references to removed fields in tests * Switch to go-oidc/v3 and remove now-redundant nbf check * Fix go.mod imports for the TF provider * Fix event-handler go.mod * Address review feedback; add 15s timeout to fetch provider metadata * Update lib/bitbucket/token_validator.go Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com> * Fix build after constant rename --------- Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com>
timothyb89
added a commit
that referenced
this pull request
Nov 22, 2024
…ng (#48724) * Add `bitbucket` join method for Bitbucket Pipelines joining This adds a new `bitbucket` join method that Machine ID bots can use to authenticate to Teleport from Bitbucket Pipelines CI runs. * Add unit tests for bitbucket joining This also fully adds `deployment_environment_uuid` which was found to be missing. * Fix imports * Update tf docs * Docs update * Update generated TF resources * Attempt to work around docs linter * Add provision token tests * Remove pipeline_uuid and step_uuid from protos Also, fix deploment_environment_uuid field name. * Remove references to removed fields in tests * Switch to go-oidc/v3 and remove now-redundant nbf check * Fix go.mod imports for the TF provider * Fix event-handler go.mod * Address review feedback; add 15s timeout to fetch provider metadata * Update lib/bitbucket/token_validator.go Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com> * Fix build after constant rename --------- Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com>
github-merge-queue bot
pushed a commit
that referenced
this pull request
Nov 23, 2024
* Machine ID: Documentation for Bitbucket Pipelines joining This adds guides and other documentation for the `bitbucket` join method, which allows Machine ID bots to join from Bitbucket Pipelines runs without shared secrets. Follow up to #48724 * Linter appeasement (round 1) * Add note about braces in UUIDs
github-actions bot
pushed a commit
that referenced
this pull request
Nov 23, 2024
This adds guides and other documentation for the `bitbucket` join method, which allows Machine ID bots to join from Bitbucket Pipelines runs without shared secrets. Follow up to #48724
github-actions bot
pushed a commit
that referenced
this pull request
Nov 23, 2024
This adds guides and other documentation for the `bitbucket` join method, which allows Machine ID bots to join from Bitbucket Pipelines runs without shared secrets. Follow up to #48724
github-merge-queue bot
pushed a commit
that referenced
this pull request
Nov 23, 2024
…ng (#48724) (#49335) * Add `bitbucket` join method for Bitbucket Pipelines joining This adds a new `bitbucket` join method that Machine ID bots can use to authenticate to Teleport from Bitbucket Pipelines CI runs. * Add unit tests for bitbucket joining This also fully adds `deployment_environment_uuid` which was found to be missing. * Fix imports * Update tf docs * Docs update * Update generated TF resources * Attempt to work around docs linter * Add provision token tests * Remove pipeline_uuid and step_uuid from protos Also, fix deploment_environment_uuid field name. * Remove references to removed fields in tests * Switch to go-oidc/v3 and remove now-redundant nbf check * Fix go.mod imports for the TF provider * Fix event-handler go.mod * Address review feedback; add 15s timeout to fetch provider metadata * Update lib/bitbucket/token_validator.go * Fix build after constant rename --------- Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com>
github-merge-queue bot
pushed a commit
that referenced
this pull request
Nov 26, 2024
* Machine ID: Documentation for Bitbucket Pipelines joining This adds guides and other documentation for the `bitbucket` join method, which allows Machine ID bots to join from Bitbucket Pipelines runs without shared secrets. Follow up to #48724 * Linter appeasement (round 1) * Add note about braces in UUIDs
github-merge-queue bot
pushed a commit
that referenced
this pull request
Nov 27, 2024
… joining (#49337) * Machine ID: Add `bitbucket` join method for Bitbucket Pipelines joining (#48724) * Add `bitbucket` join method for Bitbucket Pipelines joining This adds a new `bitbucket` join method that Machine ID bots can use to authenticate to Teleport from Bitbucket Pipelines CI runs. * Add unit tests for bitbucket joining This also fully adds `deployment_environment_uuid` which was found to be missing. * Fix imports * Update tf docs * Docs update * Update generated TF resources * Attempt to work around docs linter * Add provision token tests * Remove pipeline_uuid and step_uuid from protos Also, fix deploment_environment_uuid field name. * Remove references to removed fields in tests * Switch to go-oidc/v3 and remove now-redundant nbf check * Fix go.mod imports for the TF provider * Fix event-handler go.mod * Address review feedback; add 15s timeout to fetch provider metadata * Update lib/bitbucket/token_validator.go Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com> * Fix build after constant rename --------- Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com> * Fix logger for v16 --------- Co-authored-by: rosstimothy <39066650+rosstimothy@users.noreply.github.com>
github-merge-queue bot
pushed a commit
that referenced
this pull request
Dec 2, 2024
* Machine ID: Documentation for Bitbucket Pipelines joining This adds guides and other documentation for the `bitbucket` join method, which allows Machine ID bots to join from Bitbucket Pipelines runs without shared secrets. Follow up to #48724 * Linter appeasement (round 1) * Add note about braces in UUIDs * Adjust steps for v16 without new CLI features * Linter appeasement * Remove reference to a specific identity output type
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This adds a new
bitbucketjoin method that Machine ID bots can use to authenticate to Teleport from Bitbucket Pipelines CI runs.Minimal bitbucket pipeline config (using a custom build on my own infra with this patch):
And associated
bitbucket-type join token:Fixes #28601
changelog: Support delegated joining for Bitbucket Pipelines in Machine ID