mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-07-11 19:20:18 +00:00

Sriharsha Chintalapani 79af8bf78b

Update SSO configs to show clear URLs for callback and public keys (#18127 )

* Update SSO configs

* Update security docs to provide clear callback and public key urls

2024-10-07 15:26:10 +05:30

1.5 KiB

Raw Blame History

title	slug	collate
Amazon Cognito SSO for Kubernetes	/deployment/security/amazon-cognito/kubernetes	false

Amazon Cognito SSO for Kubernetes

Check the Helm information here.

Once the Client Id is generated, see the snippet below for an example of where to place the client id value and update the authorizer configurations in the values.yaml.

openmetadata:
  config:
    authorizer:
      className: "org.openmetadata.service.security.DefaultAuthorizer"
      containerRequestFilter: "org.openmetadata.service.security.JwtFilter"
      initialAdmins:
        - "admin"
      principalDomain: "open-metadata.org"
    authentication:
      provider: "aws-cognito"
      publicKeys:
        - "https://{your domain}/api/v1/system/config/jwks"
        - "{Cognito Domain}/{User Pool ID}/.well-known/jwks.json" # Update with your Cognito Domain and User Pool ID
      authority: "{Cognito Domain}/{User Pool ID}" # Update with your Cognito Domain and User Pool ID as follows - https://cognito-idp.us-west-1.amazonaws.com/us-west-1_DL8xfTzj8
      clientId: "{Client ID}" # Update with your Client ID
      callbackUrl: "https://{your domain}/callback"

{% note %}

AUTHENTICATION_PUBLIC_KEYS and AUTHENTICATION_CALLBACK_URL refers to https://{your domain} this is referring to your OpenMetdata installation domain name and please make sure to correctly put http or https depending on your installation.

{% /note %}

{% partial file="/v1.5/deployment/configure-ingestion.md" /%}

1.5 KiB Raw Blame History

Amazon Cognito SSO for Kubernetes

1.5 KiB

Raw Blame History