Skip to Content.
Sympa Menu

grouper-study - Containerized Grouper and Secrets

Subject: grouper-study

List archive

Containerized Grouper and Secrets


Chronological Thread 
  • From: Jack Stewart <>
  • To: , csp study grouper <>
  • Subject: Containerized Grouper and Secrets
  • Date: Wed, 25 Apr 2018 12:48:59 -0400
  • Arc-authentication-results: i=1; mx.umich.edu; iprev=pass policy.iprev=209.85.216.171 (mail-qt0-f171.google.com); spf=pass ; dkim=pass ; dmarc=pass ; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; d=umich.edu; s=arc-2017-08-04; t=1524674942; c=relaxed/relaxed; bh=VUFHSFggivwcAY0/YtBGHYvIsWziksYiinzDaPTf/Dk=; h=From:Date:Subject:To; b=lOkGV3Ei3GmeYZejygVqNe59BtdqJJrNZBE0o3PGj1AMjfxAb+T5a6YZX1hacMgUFL7/RutfkYkyfIkAh5hRszSoJD+V2wS7lU4/ePaK68dQ1TE49rmqpiPpv1XBn+lqBfXOxZq7O6/TP6n+p36zonvWgHF6QWSIcsD4Hb0U2o6gZxcqcxb0Gsi5RZM0++zoIi/QiE075a0YJ2SxPHht64BPxzMUSiLOJh/0aSQ3MRqoUghCNL7jhbvEIBbPBHYKp1KR5p1DDaJ5GpSJ5seeR6fmzI7PTRLWGjij2Qwpzj6jkA7oOW4HwPhRFajdRwattMxyO3Fv8r4nb61R9e3b9w==
  • Arc-seal: i=1; a=rsa-sha256; d=umich.edu; s=arc-2017-08-04; t=1524674942; cv=none; b=s1f8SgT30ZaQN6YGpDV66O5X7wt4TkB5ImQMbvNAClgI4sVUAelX0nRuzbhgRx4f70cZdyixybC4x8KKITUi23a/5MIdGEm6wLk0XuXk4i0qjeypB6dZVMD/vJKun6kV0DIZrngyLXHY/LrVl63QgXP7gtC0scf7Rq52n4e4OccC01tdgnTbfzOWSKH9TI1ch/DAYmZ+ZQR1GPqI7OeYHBaWhWYZuSlKkX23xztQgiFruHxRBNbyW2gZlPe5EerD8zcWIwS9oQXzN1awlZM7skSDBuKj19ms31vHpXRFkI91gMh+G98KgaZcwQ8fjj5lfltoZjgp5N82MyVQxyT6GQ==
  • Ironport-phdr: 9a23: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

Everyone,

I would like to start out by saying that the new role-based Grouper containers are great!  It was very easy to build the images.

Now my question is, what are other schools doing with regard to their Grouper configurations?  Are you "burning them into" storing them in the containers themselves, or are you using secrets?

Converting an application like Grouper to use secrets would be a LOT of work.  Effectively, you would need to convert all of the settings to environment variables.  How would you deal with the sources.xml files which, by design, need to be customized?

Many thanks,
Jack


--
Jack Stewart
Solutions Architect, Identity and Access Management
University of Michigan
4251 Plymouth Road
Ann Arbor, Michigan 48105-3640
(734) 764-0853



Archive powered by MHonArc 2.6.19.

Top of Page