K3S-HOME/applications
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

FIX(headlamp): configure OIDC authentication

Browse Source 
- Remove groups scope (Authelia does not provide groups claim)
- Set proper baseURL for OIDC redirect
- Revert baseURL to empty string (must be empty or start with '/')
This commit is contained in:
Mayne0213
2026-01-09 20:10:42 +09:00
parent ab5d432f5c
commit fd542fb409
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
headlamp/manifests/external-secret.yaml
View File

@@ -17,7 +17,7 @@ spec:
OIDC_CLIENT_ID: headlamp OIDC_CLIENT_ID: headlamp
OIDC_CLIENT_SECRET: "{{ .clientSecret }}" OIDC_CLIENT_SECRET: "{{ .clientSecret }}"
OIDC_ISSUER_URL: https://auth0213.kro.kr OIDC_ISSUER_URL: https://auth0213.kro.kr
OIDC_SCOPES: "openid profile email groups" OIDC_SCOPES: "openid profile email"
OIDC_VALIDATOR_CLIENT_ID: headlamp OIDC_VALIDATOR_CLIENT_ID: headlamp
OIDC_VALIDATOR_ISSUER_URL: https://auth0213.kro.kr OIDC_VALIDATOR_ISSUER_URL: https://auth0213.kro.kr
data: data: