simon/kube
1
0
Fork 0
forked from k-space/kube
Code Pull Requests Activity

Update README: Cluster access OIDC Client ID

Browse Source
This commit is contained in:
Rasmus Kallas
2024-02-01 19:38:47 +02:00
parent 776535d6d5
commit ab7e4d10e4
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@@ -24,7 +24,7 @@ patch /etc/kubernetes/manifests/kube-apiserver.yaml - << EOF
- --etcd-keyfile=/etc/kubernetes/pki/apiserver-etcd-client.key
- --etcd-servers=https://127.0.0.1:2379
+ - --oidc-issuer-url=https://auth2.k-space.ee/
+ - --oidc-client-id=kubelogin
+ - --oidc-client-id=oidc-gateway.kubelogin
+ - --oidc-username-claim=sub
+ - --oidc-groups-claim=groups
- --kubelet-client-certificate=/etc/kubernetes/pki/apiserver-kubelet-client.crt
@@ -65,7 +65,7 @@ users:
- oidc-login
- get-token
- --oidc-issuer-url=https://auth2.k-space.ee/
- --oidc-client-id=oidc-gateway-kubelogin
- --oidc-client-id=oidc-gateway.kubelogin
- --oidc-use-pkce
- --oidc-extra-scope=profile,email,groups
- --listen-address=127.0.0.1:27890