This project is a proof of concept implmentation of the authentication flow described here.
To use the login-server a local bosh-lite cloudfoundry install is required. After the local cloudfoundry setup make the following changes to your manifest.
- Remove the
login_z1
job. - Remove
uaa.clients.login
. - Add the following properties:
login.url: http://192.168.176.1:4567
login.enabled: true
uaa.login.client_secret: login-secret
uaa.login.addnew: true # non existent client accounts are automatically added to database upon an authentication attempt
Apply the above changes to your cloudfoundry by running bosh deploy
.
bundle install
ruby fake_login_server.rb
In a new shell (so the login server can stay running), login in with the cf cli.
cf target api.10.244.0.34.xip.io
cf login --username admin
It works when you can login with any password
- Fork it
- Create your feature branch (
git checkout -b my-new-feature
) - Commit your changes (
git commit -am 'Add some feature'
) - Push to the branch (
git push origin my-new-feature
) - Create new Pull Request
All documentation and source code is copyright of Stark & Wayne LLC.
This documentation & tool is freely available to all people and companies coming to Cloud Foundry and bosh.