One file to rule them all
This commit is contained in:
36
cmd/opencloud-chart/templates/oc-auth/openCloudOauth2.yaml
Normal file
36
cmd/opencloud-chart/templates/oc-auth/openCloudOauth2.yaml
Normal file
@@ -0,0 +1,36 @@
|
||||
{{- if index .Values.ocAuth.enabled }}
|
||||
apiVersion: hydra.ory.sh/v1alpha1
|
||||
kind: OAuth2Client
|
||||
metadata:
|
||||
name: open-cloud-client
|
||||
spec:
|
||||
grantTypes:
|
||||
- refresh_token
|
||||
- authorization_code
|
||||
- client_credentials
|
||||
- implicit
|
||||
responseTypes:
|
||||
- id_token
|
||||
- token
|
||||
- code
|
||||
scope: openid profile email roles
|
||||
secretName: oc-oauth2-client-secret
|
||||
redirectUris:
|
||||
- https://{{ .Values.host }}/auth/callback
|
||||
postLogoutRedirectUris:
|
||||
- https://{{ .Values.host }}/auth/logout/
|
||||
tokenEndpointAuthMethod: client_secret_post
|
||||
allowedCorsOrigins:
|
||||
- "http://0.0.0.0"
|
||||
#---
|
||||
#apiVersion: v1
|
||||
#kind: Secret
|
||||
#metadata:
|
||||
# name: oc-auth-got-secret
|
||||
# namespace: dev
|
||||
#stringData:
|
||||
# CLIENT_ID: {{ .Values.ocAuth.hydra.clientId }}
|
||||
# CLIENT_SECRET: {{ .Values.ocAuth.hydra.clientSecret }}
|
||||
|
||||
{{- end }}
|
||||
|
||||
Reference in New Issue
Block a user