Skip to content
This repository was archived by the owner on Oct 7, 2021. It is now read-only.

Commit

Permalink
Add optional support for OIDC authentication (#28)
Browse files Browse the repository at this point in the history
  • Loading branch information
@Nuru
Nuru authored Apr 30, 2019
1 parent 07911af commit b1d4d61
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions templates/kops/kops-private-topology.yaml.gotmpl
View file
Original file line number Diff line number Diff line change
Expand Up @@ -72,6 +72,13 @@ spec:
- Initializers
- DenyEscalatingExec
{{- end }}
{{- if getenv "KOPS_OIDC_ISSUER_URL" }}
oidcClientID: {{ getenv "KOPS_OIDC_CLIENT_ID" "kubernetes"}}
oidcGroupsClaim: groups
oidcGroupsPrefix: "oidc:"
oidcIssuerURL: {{ getenv "KOPS_OIDC_ISSUER_URL" }}
oidcUsernameClaim: email
{{- end }}
{{- if bool (getenv "KOPS_AWS_IAM_AUTHENTICATOR_ENABLED" "false") }}
authentication:
aws: {}
Expand Down

0 comments on commit b1d4d61

Please sign in to comment.