Skip to content
Snippets Groups Projects
Commit 05190b21 authored by Mart van Santen's avatar Mart van Santen
Browse files

Processed comments

parent 78325a1c
No related branches found
No related tags found
2 merge requests!68Merge loginpanel into main and release 0.5.0,!62Resolve "Embed login panel in helmchart"
Pipeline #10288 passed with stages
in 1 minute and 10 seconds
Hide whitespace changes
Inline Side-by-side
docs/helmchart.md
+ 18
18
View file @ 05190b21
......@@ -37,25 +37,24 @@ This table lists the variables you are most likely to change. Take a look at the
| `login.db.password` | Database password for backend | stackspin |
| `login.db.database` | Database name for backend | stackspin |
| `login.db.user` | Database user for backend | stackspin |
| `kratos.kratos.identitySchemas` | Tuple of filenames and JSON data to install as available schema file | See values.yaml |
| `kratos.kratos.config.identity.default_schema_url` | Location of default schema file | file:///etc/config/identity.default.schema.json |
| `kratos.kratos.identitySchemas` | Tuple of filenames and JSON data to install as available schema file | See values.yaml |
| `kratos.kratos.config.identity.default_schema_url` | Location of default schema file | file:///etc/config/identity.default.schema.json |
| `kratos.kratos.config.dsn` | Database endpoint | postgres://kratos:kratos@single-sign-on-postgresql:5432/kratos |
| `kratos.kratos.serve.public.base_url` | URL where to find kratos public API | **https://sso.stackspin.example.net/api/** |
| `kratos.kratos.selfservice.default_browser_return_url` | Default URL to return to with unknown request | **https://sso.stackspin.example.net/login/login** |
| `kratos.kratos.selfservice.methods.link.enabled` | If account recovery with a recovery link is enabled | true |
| `kratos.kratos.selfservice.flows.recovery.enabled` | If account recovery flow is enabled | true |
| `kratos.kratos.serve.public.base_url` | URL where to find kratos public API | **https://sso.stackspin.example.net/api/** |
| `kratos.kratos.selfservice.default_browser_return_url` | Default URL to return to with unknown request | **https://sso.stackspin.example.net/login/login** |
| `kratos.kratos.selfservice.flows.recovery.lifespan` | Time recovery link is valid for password reset | 15m |
| `kratos.kratos.selfservice.flows.recovery.ui_url` | **Where to link to for recovery** | **https://sso.stackspin.example.net/login/recovery** |
| `kratos.kratos.selfservice.flows.login.ui_url` | **Where to link to for login** | **https://sso.stackspin.example.net/login/login** |
| `kratos.kratos.selfservice.flows.settings.ui_url` | **Where to link to for setting/profile update** | **https://sso.stackspin.example.net/login/settings** |
| `kratos.kratos.selfservice.flows.registration.ui_url` | **Where to link to for account registration** | **https://sso.stackspin.example.net/login/registration** |
| `kratos.kratos.secrets.session` | Array of strings for session secrets | See values.yaml |
| `kratos.kratos.selfservice.flows.recovery.ui_url` | **Where to link to for recovery** | **https://sso.stackspin.example.net/login/recovery** |
| `kratos.kratos.selfservice.flows.login.ui_url` | **Where to link to for login** | **https://sso.stackspin.example.net/login/login** |
| `kratos.kratos.selfservice.flows.settings.ui_url` | **Where to link to for setting/profile update** | **https://sso.stackspin.example.net/login/settings** |
| `kratos.kratos.selfservice.flows.registration.ui_url` | **Where to link to for account registration** | **https://sso.stackspin.example.net/login/registration** |
| `kratos.kratos.secrets.session` | Array of strings for session secrets | See values.yaml |
| `kratos.kratos.courier.smtp.connection_uri` | Config of SMTP server | smtps://username:password@smtp.example.net:456/ |
| `kratos.kratos.courier.smtp.from_address` | From email address | no-reply@example.net |
| `hydra.hydra.config.urls.self.issuer`| **Base URI of the oAuth server** | **https://sso.stackspin.example.net** |
| `hydra.hydra.config.urls.login` | **URI that will be used for the login page** | **https://sso.stackspin.example.net/login** |
| `hydra.hydra.config.urls.consent` | **URI that will be used for permission checks** | **https://sso.stackspin.example.net/consent** |
| `hydra.hydra.config.secrets.system` | Secret that is used to generate secure tokens | ["YouReallyNeedToChangeThis"] |
| `hydra.hydra.config.urls.self.issuer`| **Base URI of the oAuth server** | **https://sso.stackspin.example.net** |
| `hydra.hydra.config.urls.login` | **URI that will be used for the login page** | **https://sso.stackspin.example.net/login** |
| `hydra.hydra.config.urls.consent` | **URI that will be used for permission checks** | **https://sso.stackspin.example.net/consent** |
| `hydra.hydra.config.dsn` | Database endpoint for Hydra | postgres://hydra:hydra@single-sign-on-postgresql:5432/hydra |
| `hydra.hydra.config.secrets.system` | Secret that is used to generate secure tokens str[] | ["YouReallyNeedToChangeThis"] |
| `oAuthClients` | A list of clients that need to be registered after installation. See [Registering clients](#registering-clients) for more info | user-panel configuration (**Change the `clientSecret`**!) |
......@@ -65,11 +64,12 @@ Normally one would use the [Stackspin Dashboard](https://open.greenhost.net/stac
use the command line with `kubectl`
```
kubectl -n stackspin get pods
kubectl get pod -n stackspin -l 'app.kubernetes.io/name=single-sign-on-login'
```
This will get a list of pods, we need the pod which is called `single-sign-on-login-xxxx`,
once you found the name you can interact with the flask app:
This will get the pod which provides the login panel. The pod name looks like
`single-sign-on-login-xxxx`, once you found the name you can interact with
the flask app:
List users:
......
helmchart/single-sign-on/templates/job-create-admin.yaml
+ 1
1
View file @ 05190b21
......@@ -37,7 +37,7 @@ spec:
- name: APP_SETTINGS
value: config.DevelopmentConfig
- name: SETUP_USER
value: {{ .Values.login.login }}
value: {{ .Values.login.user }}
- name: SETUP_PASSWORD
value: {{ .Values.login.password }}
command: ["/bin/bash", "-c"]
......
helmchart/single-sign-on/values.yaml
+ 1
1
View file @ 05190b21
......@@ -208,7 +208,7 @@ login:
user: stackspin
passowrd: stackspin
database: stackspin
login: admin@example.com
user: admin@example.com
password: ThisIsNotASecurePassword
# oAuthClients is a list of clients that are created during the installation process
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment