From b97146f4d147683f86cb912b331f45b3fe77e699 Mon Sep 17 00:00:00 2001 From: Brad Stein Date: Tue, 13 Jan 2026 21:04:29 -0300 Subject: [PATCH] comms: disable synapse oidc with MAS --- services/comms/helmrelease.yaml | 22 ---------------------- 1 file changed, 22 deletions(-) diff --git a/services/comms/helmrelease.yaml b/services/comms/helmrelease.yaml index 0cb4668..eaa7c20 100644 --- a/services/comms/helmrelease.yaml +++ b/services/comms/helmrelease.yaml @@ -72,11 +72,6 @@ spec: cpu: "2" memory: 3Gi extraEnv: - - name: OIDC_CLIENT_SECRET - valueFrom: - secretKeyRef: - name: synapse-oidc - key: client-secret - name: TURN_SECRET valueFrom: secretKeyRef: @@ -96,22 +91,6 @@ spec: - >- esc() { printf "%s" "$1" | sed "s/'/''/g"; }; printf '%s\n' - "oidc_providers:" - " - idp_id: keycloak" - " idp_name: Keycloak" - " issuer: https://sso.bstein.dev/realms/atlas" - " client_id: synapse" - " client_secret: '$(esc "${OIDC_CLIENT_SECRET:-}")'" - " client_auth_method: client_secret_post" - " scopes: [\"openid\", \"profile\", \"email\"]" - " authorization_endpoint: https://sso.bstein.dev/realms/atlas/protocol/openid-connect/auth" - " token_endpoint: https://sso.bstein.dev/realms/atlas/protocol/openid-connect/token" - " userinfo_endpoint: https://sso.bstein.dev/realms/atlas/protocol/openid-connect/userinfo" - " user_mapping_provider:" - " config:" - " localpart_template: \"{{ user.preferred_username }}\"" - " display_name_template: \"{{ user.name }}\"" - " allow_existing_users: true" "matrix_authentication_service:" " enabled: true" " endpoint: http://matrix-authentication-service:8080/" @@ -164,7 +143,6 @@ spec: max_event_delay_duration: 24h password_config: enabled: false - oidc_enabled: true rc_message: per_second: 0.5 burst_count: 30