jenkins: fix oidc with wellknown config

2025-12-19 17:36:56 -03:00 · 2025-12-19 17:36:56 -03:00 · 1357d783de
commit 1357d783de
parent f4fa44c842
1 changed files with 4 additions and 4 deletions
--- a/services/jenkins/helmrelease.yaml
+++ b/services/jenkins/helmrelease.yaml
@ -180,17 +180,17 @@ spec:
            clientId: "${OIDC_CLIENT_ID}"
            clientSecret: "${OIDC_CLIENT_SECRET}"
            serverConfiguration:
-              wellKnownOpenIDConfigurationUrl: "${OIDC_ISSUER}/.well-known/openid-configuration"
-            logoutFromOpenIdProvider: true
+              wellKnown:
+                wellKnownOpenIDConfigurationUrl: "${OIDC_ISSUER}/.well-known/openid-configuration"
+                scopesOverride: "openid profile email"
+          logoutFromOpenIdProvider: true
            postLogoutRedirectUrl: "https://ci.bstein.dev"
-            scopes: "openid profile email"
            sendScopesInTokenRequest: true
            rootURLFromRequest: true
            userNameField: "preferred_username"
            fullNameFieldName: "name"
            emailFieldName: "email"
            groupsFieldName: "groups"
-            escapeHatchEnabled: false
        authorizationStrategy: |
          loggedInUsersCanDoAnything:
            allowAnonymousRead: false