This repository has been archived by the owner on Dec 1, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat(deploy): add dex for identity management
- Loading branch information
Showing
3 changed files
with
91 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,6 @@ | ||
/api/ | ||
/charts/**/Chart.lock | ||
/charts/**/*.tgz | ||
/dist/ | ||
/gen/ | ||
/vendor/ | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
apiVersion: v2 | ||
type: application | ||
name: aetherfs | ||
description: A Helm chart for Kubernetes | ||
version: 0.1.0 | ||
appVersion: "1.16.0" | ||
dependencies: | ||
- repository: https://charts.dexidp.io | ||
name: dex | ||
version: 0.5.0 | ||
condition: dex.enabled |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,78 @@ | ||
dex: | ||
# -- deploy dex | ||
enabled: true | ||
|
||
config: | ||
# The base path of dex and the external name of the OpenID Connect service. | ||
# This is the canonical URL that all clients MUST use to refer to dex. If a | ||
# path is provided, dex's HTTP service will listen at a non-root URL. | ||
issuer: http://127.0.0.1:5556 | ||
|
||
# Configuration for dex appearance | ||
frontend: | ||
issuer: AetherFS | ||
theme: dark | ||
|
||
# The storage configuration determines where dex stores its state. Supported | ||
# options include SQL flavors and Kubernetes third party resources. | ||
# | ||
# See the documentation (https://dexidp.io/docs/storage/) for further information. | ||
storage: | ||
type: sqlite3 | ||
config: | ||
file: ":memory:" | ||
|
||
# type: mysql | ||
# config: | ||
# host: localhost | ||
# port: 3306 | ||
# database: dex | ||
# user: mysql | ||
# password: mysql | ||
# ssl: | ||
# mode: "false" | ||
|
||
# type: postgres | ||
# config: | ||
# host: localhost | ||
# port: 5432 | ||
# database: dex | ||
# user: postgres | ||
# password: postgres | ||
# ssl: | ||
# mode: disable | ||
|
||
# type: etcd | ||
# config: | ||
# endpoints: | ||
# - http://localhost:2379 | ||
# namespace: dex/ | ||
|
||
# type: kubernetes | ||
# config: | ||
# kubeConfigFile: $HOME/.kube/config | ||
|
||
# A list of identity connectors that allow users to login using an existing identity provider. | ||
# | ||
# See the documentation (https://dexidp.io/docs/connectors/) for further information. | ||
connectors: | ||
- id: mock | ||
name: Example | ||
type: mockCallback | ||
|
||
# A list of client applications authorized for communication with dex (otherwise, uses storage) | ||
staticClients: | ||
- id: aetherfs | ||
name: 'AetherFS' | ||
redirectURIs: | ||
- 'http://127.0.0.1:5555/callback' | ||
secret: ZXhhbXBsZS1hcHAtc2VjcmV0 | ||
|
||
# list of passwords to login by end user (otherwise, uses storage) | ||
enablePasswordDB: true | ||
staticPasswords: | ||
- email: "admin@aetherfs.tech" | ||
# bcrypt hash of the string "password": $(echo password | htpasswd -BinC 10 admin | cut -d: -f2) | ||
hash: "$2y$10$hldTTPzEsvVMcZlSx7KQIeOnu3LNqt6BZsNQaweul40i81o9KEKTW" | ||
username: "admin" | ||
userID: "430D8A58-53EF-4DD8-93F1-D818AC18010E" |