Bug #51068
open
multisite: metadata sync does not sync STS metadata (e.g., roles, policy, ...)
Added by Matt Benjamin almost 3 years ago.
Updated over 1 year ago.
Description
Support for synchronizing roles/role policy/oidc provider config (etc?) is required to easily use STS AA in replicated setups.
- Related to Bug #45659: roles in multisite configuration do not get 'replicated' to other zones added
- Pull request ID set to 43597
- Status changed from New to In Progress
- Has duplicate Bug #39545: multisite: add a metadata handler for roles so they can participate in metadata sync added
- Backport changed from octopus to quincy, pacific
- Status changed from In Progress to Fix Under Review
@Pritha @Matt Li this merged to main! it's tagged for backports, but i don't think it's reasonable to backport all 55 commits here. what do you guys think?
- Status changed from Fix Under Review to Resolved
- Backport deleted (
quincy, pacific)
- Status changed from Resolved to Pending Backport
- Copied to Backport #57364: quincy: multisite: metadata sync does not sync STS metadata (e.g., roles, policy, ...) added
- Tags set to backport_processed
- Has duplicate Bug #59083: Roles not synced across Multi-Site added
- Related to Bug #64431: metadata sync does not replicate iam OpenIDConnectProvider metadata added
Also available in: Atom
PDF