feat(oidc-test): request scope "profile"

feat(hydra-ldap): list fetched LDAP attributes and their matching claims
Gives a hint for people wanting to modify this parameter
2025-01-10 15:28:17 +01:00 · 2025-01-10 15:27:38 +01:00 · 2024-12-16 14:07:35 +01:00 · 2024-12-13 14:06:56 +01:00
5 changed files with 8 additions and 6 deletions
--- a/components/hydra-ldap/kustomization.yaml
+++ b/components/hydra-ldap/kustomization.yaml
@ -16,6 +16,7 @@ configMapGenerator:
      - WERTHER_LDAP_ENDPOINTS="ldap.test.fr:636"
      - WERTHER_LDAP_IS_TLS=true
      - WERTHER_LDAP_BASEDN="o=test,c=fr"
+      - WERTHER_LDAP_ATTR_CLAIMS="name:name,sn:family_name,givenName:given_name,mail:email"
      - WERTHER_LDAP_ROLE_BASEDN="ou=groups,o=test,c=fr"
      - WERTHER_LDAP_CONNECTION_TIMEOUT="10s"

--- a/components/hydra-oidc/resources/hydra-oidc-deployment.yaml
+++ b/components/hydra-oidc/resources/hydra-oidc-deployment.yaml
@ -19,7 +19,7 @@ spec:
      containers:
      - name: hydra-oidc-php-fpm
        image: reg.cadoles.com/cadoles/hydra-oidc-base:2024.4.2-develop.1349.c4711f6
-        imagePullPolicy: Always
+        imagePullPolicy: IfNotPresent
        args: ["/usr/sbin/php-fpm81", "-F", "-e"]
        readinessProbe:
          exec:
@ -53,7 +53,7 @@ spec:

      - name: hydra-oidc-caddy
        image: reg.cadoles.com/cadoles/hydra-oidc-base:2024.4.2-develop.1349.c4711f6
-        imagePullPolicy: Always
+        imagePullPolicy: IfNotPresent
        args:
          [
            "/usr/sbin/caddy",
--- a/components/hydra-sql/resources/hydra-sql-deployment.yaml
+++ b/components/hydra-sql/resources/hydra-sql-deployment.yaml
@ -22,7 +22,7 @@ spec:
      containers:
      - name: hydra-sql-fpm
        image: reg.cadoles.com/cadoles/hydra-sql-base:2024.11.6-develop.1113.075be9b
-        imagePullPolicy: Always
+        imagePullPolicy: IfNotPresent
        args: ["/usr/sbin/php-fpm81", "-F", "-e"]
        readinessProbe:
          exec:
@ -69,7 +69,7 @@ spec:

      - name: hydra-sql-caddy
        image: reg.cadoles.com/cadoles/hydra-sql-base:2024.11.6-develop.1113.075be9b
-        imagePullPolicy: Always
+        imagePullPolicy: IfNotPresent
        args: ["/usr/sbin/caddy", "run", "--adapter", "caddyfile", "--config", "/etc/caddy/Caddyfile"]
        readinessProbe:
          httpGet:
--- a/components/oidc-test/kustomization.yaml
+++ b/components/oidc-test/kustomization.yaml
@ -17,4 +17,5 @@ configMapGenerator:
      - OIDC_REDIRECT_URL=https://example.net/oauth2/callback
      - OIDC_POST_LOGOUT_REDIRECT_URL=https://example.net
      - OIDC_SKIP_ISSUER_VERIFICATION="true"
-      - OIDC_INSECURE_SKIP_VERIFY="true"
+      - OIDC_INSECURE_SKIP_VERIFY="true"
+      - OIDC_SCOPES="openid profile"
--- a/resources/hydra-dispatcher/resources/hydra-dispatcher-deployment.yaml
+++ b/resources/hydra-dispatcher/resources/hydra-dispatcher-deployment.yaml
@ -61,7 +61,7 @@ spec:
          runAsUser: 1000
      - name: hydra-dispatcher-caddy
        image: reg.cadoles.com/cadoles/hydra-dispatcher-base:2024.9.24-develop.1122.f88a5eb
-        imagePullPolicy: Always
+        imagePullPolicy: IfNotPresent
        args:
          [
            "/usr/sbin/caddy",
Author	SHA1	Message	Date
Laurent Gourvénec	7dedf3f7e5	feat(oidc-test): request scope "profile"	2025-01-10 15:28:17 +01:00
Laurent Gourvénec	0ea5fd9141	feat(hydra-ldap): list fetched LDAP attributes and their matching claims Gives a hint for people wanting to modify this parameter	2025-01-10 15:27:38 +01:00
pcaseiro	c97266c272	Merge pull request 'feat(pods): change image pull policy from Always to IfNotPresent' (#53 ) from feat/pull-policy-IfNotPresent into unstable Reviewed-on: #53 Reviewed-by: Matthieu Lamalle <mlamalle@cadoles.com> Reviewed-by: pcaseiro <pcaseiro@cadoles.com>	2024-12-16 14:07:35 +01:00
Laurent Gourvénec	4df11ead1e	feat(pods): change image pull policy from Always to IfNotPresent Otherwise, we have a SPOF with the image registry used	2024-12-13 14:06:56 +01:00