Pere Miquel Brull 7e0a7dcc5e
Doc Migration - Move design & fix security details (#6131)
* Move design & fix security details

* Add install test

* Add python version for M1
2022-07-17 12:08:35 -07:00

1.2 KiB

title slug
Google SSO for Docker /deployment/security/google/docker

Google SSO for Docker

To enable security for the Docker deployment, follow the next steps:

1. Create an .env file

Create an openmetadata_azure.env file and add the following contents as an example. Use the information generated when setting up the account.

# OpenMetadata Server Authentication Configuration
AUTHORIZER_CLASS_NAME: org.openmetadata.catalog.security.DefaultAuthorizer
AUTHORIZER_REQUEST_FILTER: org.openmetadata.catalog.security.JwtFilter
AUTHORIZER_ADMIN_PRINCIPALS: [ admin ]  # Your `name` from name@domain.com
AUTHORIZER_INGESTION_PRINCIPALS: [ ingestion-bot ]
AUTHORIZER_PRINCIPAL_DOMAIN: open-metadata.org

AUTHENTICATION_PROVIDER: google
AUTHENTICATION_PUBLIC_KEYS:
  - "https://www.googleapis.com/oauth2/v3/certs"
AUTHENTICATION_AUTHORITY: "https://accounts.google.com"
AUTHENTICATION_CLIENT_ID: Client ID
AUTHENTICATION_CALLBACK_URL: http://localhost:8585/callback

# Airflow Configuration
AIRFLOW_AUTH_PROVIDER: google
OM_AUTH_AIRFLOW_GOOGLE_SECRET_KEY_PATH: /path/to/secret.json

2. Start Docker

docker compose --env-file ~/openmetadata_azure.env up -d