-
Notifications
You must be signed in to change notification settings - Fork 88
/
identity.go
41 lines (33 loc) · 1.04 KB
/
identity.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
package identity
import (
"fmt"
kotsv1beta1 "github.com/replicatedhq/kots/kotskinds/apis/kots/v1beta1"
kotsscheme "github.com/replicatedhq/kots/kotskinds/client/kotsclientset/scheme"
"github.com/replicatedhq/kots/pkg/ingress"
"github.com/replicatedhq/kots/pkg/rbac"
"k8s.io/client-go/kubernetes/scheme"
)
const (
WildcardGroupID = "*"
)
var (
KotsIdentityLabelKey = "kots.io/identity"
KotsIdentityLabelValue = "true"
DefaultGroups = []kotsv1beta1.IdentityGroup{DefaultGroup}
DefaultGroup = kotsv1beta1.IdentityGroup{
ID: WildcardGroupID,
RoleIDs: []string{rbac.ClusterAdminRole.ID},
}
)
func init() {
kotsscheme.AddToScheme(scheme.Scheme)
}
func DexIssuerURL(identitySpec kotsv1beta1.IdentityConfigSpec) string {
if identitySpec.IdentityServiceAddress != "" {
return identitySpec.IdentityServiceAddress
}
return fmt.Sprintf("%s/dex", ingress.GetAddress(identitySpec.IngressConfig))
}
func DexCallbackURL(identitySpec kotsv1beta1.IdentityConfigSpec) string {
return fmt.Sprintf("%s/callback", DexIssuerURL(identitySpec))
}