mirror of https://github.com/open-metadata/OpenMetadata.git synced 2025-07-12 19:48:26 +00:00

Sriharsha Chintalapani 79af8bf78b

Update SSO configs to show clear URLs for callback and public keys (#18127 )

* Update SSO configs

* Update security docs to provide clear callback and public key urls

2024-10-07 15:26:10 +05:30

1.4 KiB

Raw Blame History

title	slug	collate
Auth0 SSO for Kubernetes	/deployment/security/auth0/kubernetes	false

Auth0 SSO for Kubernetes

Check the Helm information here.

Once the Client Id is generated, see the snippet below for an example of where to place the client id value and update the authorizer configurations in the values.yaml.

openmetadata:
  config:
    authorizer:
      className: "org.openmetadata.service.security.DefaultAuthorizer"
      containerRequestFilter: "org.openmetadata.service.security.JwtFilter"
      initialAdmins: 
      - "suresh"
      principalDomain: "open-metadata.org"
    authentication:
      provider: "auth0"
      publicKeys: 
      - "https://{your domain}/api/v1/system/config/jwks" # Update with your Domain and Make sure this "/api/v1/system/config/jwks" is always configured to enable JWT tokens
      - "{Auth0 Domain Name}/.well-known/jwks.json"
      authority: "https://parth-panchal.us.auth0.com/"
      clientId: "{Client ID}"
      callbackUrl: "https://{your domain}/callback"

{% note %}

AUTHENTICATION_PUBLIC_KEYS and AUTHENTICATION_CALLBACK_URL refers to https://{your domain} this is referring to your OpenMetdata installation domain name and please make sure to correctly put http or https depending on your installation.

{% /note %}

{% partial file="/v1.5/deployment/configure-ingestion.md" /%}

1.4 KiB Raw Blame History

Auth0 SSO for Kubernetes

1.4 KiB

Raw Blame History