You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
While the current ClearML Server security model provides static credentials for the Web UI, many organizations—including ours—are moving towards a zero trust model, placing emphasis on robust authentication and authorization measures for all applications. We'd like for our single user identity pool to be used across all integrated applications, including ClearML Server.
Ideally, we'd like to:
Configure ClearML Server to utilize a remote OIDC provider for identities
Map permissions to users via roles/groups and let a proxy such as oauth2-proxy handle token exchange
Allow ClearML Server to trust the claims from a request header (e.g. X-Auth-Request-Access-Token)
Is such a configuration possible, or are there plans to support it in the future? Appreciate your thoughts and consideration!
The text was updated successfully, but these errors were encountered:
Organizational identity management is addressed by ClearML's enterprise offering (see here).
While some components might make it into the OSS offering in the future, it is not on the current development roadmap.
While the current ClearML Server security model provides static credentials for the Web UI, many organizations—including ours—are moving towards a zero trust model, placing emphasis on robust authentication and authorization measures for all applications. We'd like for our single user identity pool to be used across all integrated applications, including ClearML Server.
Ideally, we'd like to:
Is such a configuration possible, or are there plans to support it in the future? Appreciate your thoughts and consideration!
The text was updated successfully, but these errors were encountered: