-
Notifications
You must be signed in to change notification settings - Fork 3
/
dex-config.yaml
50 lines (49 loc) · 1.36 KB
/
dex-config.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
kind: ConfigMap
apiVersion: v1
metadata:
name: dex
namespace: kube-authentication
data:
config.yaml: |
issuer: https://18.217.73.69:30010
storage:
type: kubernetes
config:
inCluster: true
web:
https: 0.0.0.0:5556
tlsCert: /etc/dex/tls/tls.crt
tlsKey: /etc/dex/tls/tls.key
staticClients:
- id: dex
redirectURIs:
- 'http://18.217.73.69:32000/callback'
name: 'gangway'
secret: ZXhhbXBsZS1hcHAtc2VjcmV0
connectors:
- type: ldap
name: OpenLDAP
id: ldap
config:
host: 10.100.230.194
# No TLS for this setup.
insecureNoSSL: true
# This would normally be a read-only user.
bindDN: cn=admin,dc=example,dc=org
bindPW: admin
usernamePrompt: User Name
userSearch:
baseDN: dc=example,dc=org
filter: "(objectClass=posixaccount)"
username: uid
# "DN" (case sensitive) is a special attribute name. It indicates that
# this value should be taken from the entity's DN not an attribute on
# the entity.
idAttr: DN
emailAttr: mail
nameAttr: cn
# The group name should be the "cn" value.
nameAttr: cn
oauth2:
skipApprovalScreen: true
enablePasswordDB: true