team support in concourse ci 2.0 #concourse_tokyo
TRANSCRIPT
![Page 1: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/1.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved. ‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Team Support in Concourse CI 2.0
Toshiaki Maki 2016-09-08 #concourse_tokyo
![Page 2: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/2.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Who am I ?• Toshiaki Maki (@making) http://blog.ik.am
•Sr. Solutions Architect @Pivotal
•Spring Framework enthusiast
bit.ly/spring-book
![Page 3: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/3.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Who am I ?• Toshiaki Maki (@making) http://blog.ik.am
•Sr. Solutions Architect @Pivotal
•Spring Framework enthusiast
bit.ly/spring-book
![Page 4: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/4.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Before 2.0• 2 types of Authentication / Authorization
![Page 5: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/5.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Before 2.0• 2 types of Authentication / Authorization
Basic
😎
![Page 6: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/6.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Before 2.0• 2 types of Authentication / Authorization
Github TeamBasic
😎
![Page 7: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/7.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Before 2.0• 2 types of Authentication / Authorization
Github TeamBasic
😎
•No multi tenancy •All pipelines/builds are for only 1 team
![Page 8: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/8.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Multiple Teams from 2.0 !!•separate namespace for pipelines/builds •main team (=admin) and other teams •multiple providers are supported •Basic •Github Team •Cloud Foundry's UAA •Generic OAuth 2
![Page 9: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/9.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Github TeamGithub TeamBasicBasicTeam A Team B
😎
![Page 10: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/10.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Github TeamGithub TeamBasicBasicTeam A Team B
😎
![Page 11: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/11.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
provider multi users per team
multi teams per provider
Basic 💔 💔
Github 💖 💖 (team)
UAA 💖 💖 (space)
OAuth 2 💖 💔 (depends on impl)
![Page 12: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/12.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Basic
$ fly -t foo set-team -n team-a \ --basic-auth-username=foo \ --basic-auth-password=foo
![Page 13: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/13.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Github
$ fly -t foo set-team -n team-b \ --github-auth-client-id=xxxx \ --github-auth-client-secret=xxxx \ --github-auth-team=yourorg/yourteam
callback url = https://<concourse url>/auth/github/callback
![Page 14: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/14.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
UAA$ fly -t foo set-team -n team-b \ --uaa-auth-client-id=xxxx \ --uaa-auth-client-secret=xxxx \ --uaa-auth-url=https://xxx/oauth/authorize \
--uaa-auth-token-url=https://xxx/oauth/token \
--uaa-auth-cf-url=https://api.xxx \ --uaa-auth-cf-space=xxxx
callback url = https://<concourse url>/auth/uaa/callback
![Page 15: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/15.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Generic OAuth 2$ fly -t foo set-team -n team-d \ --generic-oauth-display=name='X' \ --generic-oauth-client-id=xxxx \ --generic-oauth-client-secret=xxxx \ --generic-oauth-auth-url=https://... \ --generic-oauth-token-url=https://...
callback url = https://<concourse url>/auth/oauth/callback
OAuth provider should be private
![Page 16: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/16.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Combination$ fly -t foo set-team -n team-e \ --basic-auth-...=... \ --github-auth-...=... \ --uaa-auth-...=... \ --generic-oauth-...=... \
![Page 17: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/17.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
![Page 18: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/18.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
Demo
![Page 19: Team Support in Concourse CI 2.0 #concourse_tokyo](https://reader034.vdocuments.mx/reader034/viewer/2022051122/586f86061a28ab54768b53ad/html5/thumbnails/19.jpg)
‹#›© 2016 Pivotal Software, Inc. All rights reserved.
[Ads] Cloud Foundry Workshop • http://pivotal-japan.connpass.com/