add oidc auth docker-compose overrides
Signed-off-by: Rui Yang <ryang@pivotal.io> Co-authored-by: Bohan Chen <bochen@pivotal.io>
This commit is contained in:
parent
04f682cc17
commit
a6217f2e29
|
@ -0,0 +1,18 @@
|
|||
{
|
||||
"idp_name": "http://oidc:9000",
|
||||
"port": 9000,
|
||||
"client_config": [
|
||||
{
|
||||
"client_id": "foo",
|
||||
"client_secret": "bar",
|
||||
"redirect_uris": [
|
||||
"http://localhost:8080/sky/issuer/callback"
|
||||
]
|
||||
}
|
||||
],
|
||||
"claim_mapping": {
|
||||
"openid": [ "sub" ],
|
||||
"email": [ "email", "email_verified" ],
|
||||
"profile": [ "id", "username", "preferred_username", "groups" ]
|
||||
}
|
||||
}
|
|
@ -0,0 +1,20 @@
|
|||
[
|
||||
{
|
||||
"id": "1",
|
||||
"email": "user1@example.com",
|
||||
"email_verified": true,
|
||||
"username": "user1",
|
||||
"preferred_username": "John",
|
||||
"password": "user1pass",
|
||||
"groups": ["group1"]
|
||||
},
|
||||
{
|
||||
"id": "2",
|
||||
"email": "user2@example.com",
|
||||
"email_verified": true,
|
||||
"username": "user2",
|
||||
"preferred_username": "John",
|
||||
"password": "user2pass",
|
||||
"groups": []
|
||||
}
|
||||
]
|
|
@ -0,0 +1,33 @@
|
|||
# oidc.yml - a docker-compose override that adds a oidc IDP to the stack
|
||||
#
|
||||
# There are 2 users and 1 group:
|
||||
# user1@example.com:user1pass;group1
|
||||
# user2@example.com:user2pass
|
||||
#
|
||||
# ref: https://hub.docker.com/r/qlik/simple-oidc-provider/
|
||||
# ref: https://docs.docker.com/compose/extends/
|
||||
#
|
||||
version: '3'
|
||||
|
||||
services:
|
||||
web:
|
||||
environment:
|
||||
# CONCOURSE_MAIN_TEAM_OIDC_USER: user1
|
||||
CONCOURSE_MAIN_TEAM_OIDC_USER: John
|
||||
# CONCOURSE_MAIN_TEAM_OIDC_GROUP: group1
|
||||
|
||||
CONCOURSE_OIDC_ISSUER: http://oidc:9000
|
||||
CONCOURSE_OIDC_CLIENT_ID: foo
|
||||
CONCOURSE_OIDC_CLIENT_SECRET: bar
|
||||
|
||||
oidc:
|
||||
image: qlik/simple-oidc-provider
|
||||
ports:
|
||||
- 9000:9000
|
||||
environment:
|
||||
REDIRECTS: http://localhost:8080/sky/issuer/callback
|
||||
CONFIG_FILE: /oidc/config.json
|
||||
USERS_FILE: /oidc/users.json
|
||||
volumes:
|
||||
- ./hack/oidc:/oidc
|
||||
|
Loading…
Reference in New Issue