Add OIDC config for testing

Add vars to docker compose file.
artefactual · Aug 13, 2024 · 5aa4918 · 5aa4918
1 parent 3a697a5
commit 5aa4918
Showing 1 changed file with 21 additions and 0 deletions.
diff --git a/hack/docker-compose.yml b/hack/docker-compose.yml
@@ -200,6 +200,19 @@ services:
       ARCHIVEMATICA_DASHBOARD_CLIENT_HOST: "mysql"
       ARCHIVEMATICA_DASHBOARD_CLIENT_DATABASE: "MCP"
       ARCHIVEMATICA_DASHBOARD_SEARCH_ENABLED: "${AM_SEARCH_ENABLED:-true}"
+      ARCHIVEMATICA_DASHBOARD_OIDC_AUTHENTICATION: "true"
+      ARCHIVEMATICA_DASHBOARD_OIDC_ALLOW_LOCAL_AUTHENTICATION: "true"
+      OIDC_RP_CLIENT_ID: "artefactual-archivematica-dashboard"
+      OIDC_RP_CLIENT_SECRET: "example-secret"
+      OIDC_SECONDARY_PROVIDER_NAMES: "secondary"
+      OIDC_PROVIDER_CLIENT_ID_SECONDARY: "artefactual-archivematica-dashboard"
+      OIDC_PROVIDER_CLIENT_SECRET_SECONDARY: "example-secret"
+      OIDC_OP_AUTHORIZATION_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/auth"
+      OIDC_OP_TOKEN_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/token"
+      OIDC_OP_USER_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/userinfo"
+      OIDC_OP_JWKS_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/certs"
+      OIDC_OP_LOGOUT_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/logout"
+      OIDC_RP_SIGN_ALGO: "RS256"
     volumes:
       - "../:/src"
       - "archivematica_pipeline_data:/var/archivematica/sharedDirectory:rw"
@@ -231,6 +244,14 @@ services:
       SS_DB_URL: "mysql://archivematica:demo@mysql/SS"
       SS_GNUPG_HOME_PATH: "/var/archivematica/storage_service/.gnupg"
       SS_PROMETHEUS_ENABLED: "true"
+      S_OIDC_AUTHENTICATION: "true"
+      OIDC_RP_CLIENT_ID: "artefactual-am-storage-service"
+      OIDC_RP_CLIENT_SECRET: "example-secret"
+      OIDC_OP_AUTHORIZATION_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/auth"
+      OIDC_OP_TOKEN_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/token"
+      OIDC_OP_USER_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/userinfo"
+      OIDC_OP_JWKS_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/certs"
+      OIDC_RP_SIGN_ALGO: "RS256"
     volumes:
       - "./submodules/archivematica-storage-service/:/src/"
       - "./submodules/archivematica-sampledata/:/home/archivematica/archivematica-sampledata/:ro"