After the community meeting. Setting this up for those interested in learning more and understanding the issues.
Would like to outline what we are looking into
General user stories As an operator of a managed service, I want to be able to provision a service in a restricted namespace but allow any user in my cluster to provision a slice of that service without needing to know the specific location or credentials of the service.
As an operator of a managed service, I would like the option to restrict which users can provision a shared service instance and request a slice of this service.
Key Pieces
- sharing credentials across service instances (possibly across brokers if the namespace broker is leveraged) - limiting who can provision particular service classes (namespace broker)
Discuss whether the automation broker is the right place for the work and also go through some of the ideas around implementation.
Discuss option of a separate shared service broker using bundle-lib
