Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The oidc_issuer_url can also be obtained/confirmed from https://oauth.id.jumpcloud.com/.well-known/openid-configuration

  • Create secret called kfuse-auth-jumpcloudas follows in kfuse namespace. Use base64 encoded values of client-id and client-secret from above. To generate cookie secret, run:

    Code Block
    python3 -c 'import base64,secrets,string; print(base64.b64encode(bytes("".join(secrets.choice(string.ascii_letters + string.punctuation + string.digits) for i in range(32)), "utf-8")).decode())'
    Code Block
    apiVersion: v1
    data:
      client-secret: <base 64 encoded client secret>
      client-id: <base 64 encoded client id>
      cookie-secret: <base 64 encoded cookie secret>
    kind: Secret
    metadata:
      name: kfuse-auth-jumpcloud
    type: Opaque
  • Update custom-values.yaml file to include following to refer to the config map and secrets we created.

    Code Block
    kfuse-auth:
      oauth2-proxy:
        config:
          existingSecret: "kfuse-auth-jumpcloud"
          existingConfig: "kfuse-auth-jumpcloud-config"

...