Hello list,
I run an AWX 15.0.1 system with LDAP integration.
I have the following requirements:
-
External applications need to execute AWX jobs via AWX API (e.g. CI Pipelines or just some sort of cronjobs. These applications do not support oAuth2).
-
These jobs must not be associated with LDAP users.
What I did so far is creating internal AWX users and create personal access tokens with these users. The external applications then use these access tokens to authenticate and run the jobs.
This approach relies on extreme long token expiration times. And prevent us from granting LDAP users permission to generate their own personal access tokens.
I’m wondering now if there’s any other approach to realize this kind of service user inside AWX?
Regards
Stefan