infrastructure/ansible
1
0
Fork 0
Code Pull requests 7 Activity Actions

Use OIDC in Dist-Git

Browse source 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
This commit is contained in:
Aurélien Bompard 2024-12-11 11:33:38 +01:00
parent 6a5f359a91
commit 311f9c009a
No known key found for this signature in database
GPG key ID: 31584CFEB9BF64AD
1 changed files with 0 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

4
roles/distgit/pagure/templates/pagure.cfg
View file

@ -109,7 +109,6 @@ SHORT_LENGTH = 7
# Specify which authentication method to use, defaults to `fas` can be or
# `local`
# Default: ``fas``.
{% if env == "staging" %}
PAGURE_AUTH = 'oidc'
OIDC_CLIENT_SECRETS = "/etc/pagure/client_secrets.json"
OIDC_ID_TOKEN_COOKIE_SECURE = True
@ -124,9 +123,6 @@ OIDC_PAGURE_USERNAME = 'preferred_username'
OIDC_PAGURE_SSH_KEY = 'ssh_key'
OIDC_PAGURE_GROUPS = 'groups'
OIDC_PAGURE_USERNAME_FALLBACK = 'nickname'
{% else %}
PAGURE_AUTH = 'fas'
{% endif %}
# When this is set to True, the session cookie will only be returned to the
# server via ssl (https). If you connect to the server via plain http, the