Allow CA secret name to be specified for oidc-client
This commit allows the CA secret name for the oidc client to be specified through a helm override. By default, if no overrides are given, the secret name is assumed to be dex-client-secret, same as the old forced secret name, for compatibility with older systems. Change-Id: I4a86f3262050a4638fd6f16192490ce1e1e11ff2 Story: 2007361 Task: 42649 Signed-off-by: Jerry Sun <jerry.sun@windriver.com>
This commit is contained in:
parent
6ccf7952bd
commit
5b0faac2d6
|
@ -83,7 +83,7 @@ spec:
|
|||
volumes:
|
||||
- name: dex-client-secret-volume
|
||||
secret:
|
||||
secretName: dex-client-secret
|
||||
secretName: {{ .Values.config.issuer_root_ca_secret }}
|
||||
- name: https-tls
|
||||
secret:
|
||||
secretName: {{ .Values.tlsName }}
|
||||
|
|
|
@ -30,6 +30,7 @@ config:
|
|||
client_secret: St8rlingX
|
||||
issuer: https://10.10.10.3:30556/dex
|
||||
issuer_root_ca: /home/dex-ca.pem
|
||||
issuer_root_ca_secret: dex-client-secret
|
||||
listen: https://0.0.0.0:5555
|
||||
redirect_uri: https://10.10.10.3:30555/callback
|
||||
|
||||
|
|
Loading…
Reference in New Issue