Skip to content

Commit

Permalink
Add OIDC config for testing Storage Service
Browse files Browse the repository at this point in the history
  • Loading branch information
@sbreker
sbreker committed Sep 24, 2024
1 parent 8bcf4c7 commit 801749e
Showing 1 changed file with 27 additions and 18 deletions.
45 changes: 27 additions & 18 deletions hack/docker-compose.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -191,21 +191,21 @@ services:
ARCHIVEMATICA_DASHBOARD_SEARCH_ENABLED: "${AM_SEARCH_ENABLED:-true}"
ARCHIVEMATICA_DASHBOARD_OIDC_AUTHENTICATION: "true"
ARCHIVEMATICA_DASHBOARD_OIDC_ALLOW_LOCAL_AUTHENTICATION: "true"
OIDC_RP_CLIENT_ID: "artefactual-archivematica-dashboard"
OIDC_RP_CLIENT_ID: "am-dashboard"
OIDC_RP_CLIENT_SECRET: "example-secret"
OIDC_OP_AUTHORIZATION_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/certs"
OIDC_OP_LOGOUT_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/logout"
OIDC_OP_AUTHORIZATION_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/certs"
OIDC_OP_LOGOUT_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/logout"
OIDC_SECONDARY_PROVIDER_NAMES: "secondary"
OIDC_RP_CLIENT_ID_SECONDARY: "artefactual-archivematica-dashboard"
OIDC_RP_CLIENT_ID_SECONDARY: "am-dashboard"
OIDC_RP_CLIENT_SECRET_SECONDARY: "example-secret"
OIDC_OP_AUTHORIZATION_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/certs"
OIDC_OP_LOGOUT_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/logout"
OIDC_OP_AUTHORIZATION_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/certs"
OIDC_OP_LOGOUT_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/logout"
OIDC_RP_SIGN_ALGO: "RS256"
volumes:
- "../:/src"
Expand Down Expand Up @@ -238,13 +238,22 @@ services:
SS_DB_URL: "mysql://archivematica:demo@mysql/SS"
SS_GNUPG_HOME_PATH: "/var/archivematica/storage_service/.gnupg"
SS_PROMETHEUS_ENABLED: "true"
S_OIDC_AUTHENTICATION: "true"
OIDC_RP_CLIENT_ID: "artefactual-am-storage-service"
SS_OIDC_AUTHENTICATION: "true"
OIDC_RP_CLIENT_ID: "am-storage-service"
OIDC_RP_CLIENT_SECRET: "example-secret"
OIDC_OP_AUTHORIZATION_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT: "http://keycloak:8080/realms/artefactual/protocol/openid-connect/certs"
OIDC_OP_AUTHORIZATION_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/certs"
OIDC_OP_LOGOUT_ENDPOINT: "http://keycloak:8080/realms/demo/protocol/openid-connect/logout"
OIDC_SECONDARY_PROVIDER_NAMES: "secondary"
OIDC_RP_CLIENT_ID_SECONDARY: "am-storage-service"
OIDC_RP_CLIENT_SECRET_SECONDARY: "example-secret"
OIDC_OP_AUTHORIZATION_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/certs"
OIDC_OP_LOGOUT_ENDPOINT_SECONDARY: "http://keycloak:8080/realms/secondary/protocol/openid-connect/logout"
OIDC_RP_SIGN_ALGO: "RS256"
volumes:
- "./submodules/archivematica-storage-service/:/src/"
Expand Down

0 comments on commit 801749e

Please sign in to comment.