bstein/titan-iac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

nextcloud: force OIDC login

Browse Source
This commit is contained in:
Brad Stein 2026-01-06 23:54:33 -03:00
parent 2d6883eb67
commit 9d9aa5b64b
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
services/nextcloud/configmap.yaml
View File

@ -43,10 +43,10 @@ data:
'oidc_login_provider_url' => 'https://sso.bstein.dev/realms/atlas', 'oidc_login_provider_url' => 'https://sso.bstein.dev/realms/atlas',
'oidc_login_client_id' => getenv('OIDC_CLIENT_ID'), 'oidc_login_client_id' => getenv('OIDC_CLIENT_ID'),
'oidc_login_client_secret' => getenv('OIDC_CLIENT_SECRET'), 'oidc_login_client_secret' => getenv('OIDC_CLIENT_SECRET'),
'oidc_login_auto_redirect' => false, 'oidc_login_auto_redirect' => true,
'oidc_login_end_session_redirect' => true, 'oidc_login_end_session_redirect' => true,
'oidc_login_button_text' => 'Login with Keycloak', 'oidc_login_button_text' => 'Login with Keycloak',
'oidc_login_hide_password_form' => false, 'oidc_login_hide_password_form' => true,
'oidc_login_attributes' => 'oidc_login_attributes' =>
array ( array (
'id' => 'preferred_username', 'id' => 'preferred_username',
@ -56,7 +56,7 @@ data:
'oidc_login_scope' => 'openid profile email', 'oidc_login_scope' => 'openid profile email',
'oidc_login_unique_id' => 'preferred_username', 'oidc_login_unique_id' => 'preferred_username',
'oidc_login_use_pkce' => true, 'oidc_login_use_pkce' => true,
'oidc_login_disable_registration' => false, 'oidc_login_disable_registration' => true,
'oidc_login_create_groups' => false, 'oidc_login_create_groups' => false,
# External storage for user data should be configured to Asteria via the External Storage app (admin UI), # External storage for user data should be configured to Asteria via the External Storage app (admin UI),
# keeping the astreae PVC for app internals only. # keeping the astreae PVC for app internals only.