mirror of
https://github.com/open-metadata/OpenMetadata.git
synced 2025-07-23 09:22:18 +00:00
1.4 KiB
1.4 KiB
Configure OpenMetadata Server
Update conf/openmetadata-security.yaml
Once the Client Id, and Issuer URL are generated, add those details in openmetadata-security.yaml file in the respective fields.
authenticationConfiguration:
provider: "okta"
publicKeyUrls:
- "{ISSUER_URL}/v1/keys"
authority: "{ISSUER_URL}"
clientId: "{CLIENT_ID - SPA APP}"
callbackUrl: "http://localhost:8585/callback"
- ISSUER_URL - This can be found in Security -> API -> Authorization Servers.
- CLIENT_ID - SPA APP - This is the Client_ID for Single Page Applications. On configuring the app, the Client_ID can be found in the General section, under Client Credentials >> Client ID
Update authorizerConfiguration to add adminPrincipals
- For
adminPrincipals, add the Username. - For
botPrincipals, add the Ingestion Client ID for the Service application. This can be found in Okta -> Applications -> Applications.
authorizerConfiguration:
className: "org.openmetadata.catalog.security.DefaultAuthorizer"
containerRequestFilter: "org.openmetadata.catalog.security.JwtFilter"
adminPrincipals:
- "<username>"
botPrincipals:
- "ingestion-bot"
- "<Ingestion Client ID>"
principalDomain: "open-metadata.org"