adam/servicedemon
1
0
Fork 0
Code Issues 5 Pull Requests Packages Projects Releases Wiki Activity

Slack Approval Process #1

New Issue
Open
opened 2023-07-04 12:25:42 +00:00 by adam · 1 comment
adam commented 2023-07-04 12:25:42 +00:00
Owner
Copy Link

When the spoke-agent is deployed in a namespace, the first thing it does is reach out to the /register endpoint to announce itself. Right now the only way to approve the application is to use a client cert with a specific OU and that'll send a request to approve the application.

Instead I would like the Hub to send a slack message announcing the new application that's attempting to be registered, and then have some way to have a slack user interact with the message to approve it.

One example for this might look like:

Hub sends "A new application is waiting for approval app.fixergrid.net. React with to approve or to deny"

When a user in that channel reacts, the Hub should thread a message that says who approved the application and when, since reacts can be removed by the user.

On approval the Hub should emit the ApplicationRegistrationApproved event so that the rest of the application can respond accordingly.

When the spoke-agent is deployed in a namespace, the first thing it does is reach out to the `/register` endpoint to announce itself. Right now the only way to approve the application is to use a client cert with a specific OU and that'll send a request to approve the application. Instead I would like the Hub to send a slack message announcing the new application that's attempting to be registered, and then have some way to have a slack user interact with the message to approve it. One example for this might look like: Hub sends "A new application is waiting for approval app.fixergrid.net. React with ✅ to approve or :x: to deny" When a user in that channel reacts, the Hub should thread a message that says who approved the application and when, since reacts can be removed by the user. On approval the Hub should emit the `ApplicationRegistrationApproved` event so that the rest of the application can respond accordingly.
adam added this to the POC Finished milestone 2023-07-04 12:25:42 +00:00
adam commented 2023-07-04 12:50:05 +00:00
Author
Owner
Copy Link

On second thought, instead of requiring us to go through Slack, we already have Okta groups for some nautilus services, so instead I'll make a UI that let's us do the approval process.

On second thought, instead of requiring us to go through Slack, we already have Okta groups for some nautilus services, so instead I'll make a UI that let's us do the approval process.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone POC Finished
Projects
Clear projects
No project
Assignees
Clear assignees
adam
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: adam/servicedemon#1
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?