build: set up local OIDC endpoint with dex #5

tpluscode · 2020-09-08T14:55:17Z

Adds dex OIDC server to the docker-compose (via lando) to have a real authentication flow locally

tpluscode · 2020-09-08T15:05:14Z

.local.env

+# OIDC config
+AUTH_ISSUER=https://auth.cube-creator.lndo.site
+AUTH_AUDIENCE=cube-creator
+AUTH_JWKS_URI=http://dex:5556/keys


The lndo.site URLs cannot be used inside the containers right (which I think is a bug, reported as lando/lando#2579)

Instead the service name has to be used to call dex from API to verify token

tpluscode · 2020-09-08T15:05:34Z

apis/core/index.ts

+  app.get('/authenticated', (req, res) => {
+    return res.status(200).end()
+  })
+
  app.get('/protected', guard().check('scope'), (req, res) => {


@sandhose how would we configure dex to have custom scopes?

build: set up local OIDC endpoint with dex

af45863

tpluscode requested review from martinmaillard and sandhose September 8, 2020 14:55

martinmaillard mentioned this pull request Sep 8, 2020

feat(ui): authentication using OIDC #6

Merged

tpluscode commented Sep 8, 2020

View reviewed changes

tpluscode closed this Sep 9, 2020

tpluscode deleted the dex branch November 5, 2020 14:59

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build: set up local OIDC endpoint with dex #5

build: set up local OIDC endpoint with dex #5

tpluscode commented Sep 8, 2020

tpluscode Sep 8, 2020

tpluscode Sep 8, 2020

build: set up local OIDC endpoint with dex #5

build: set up local OIDC endpoint with dex #5

Conversation

tpluscode commented Sep 8, 2020

tpluscode Sep 8, 2020

Choose a reason for hiding this comment

tpluscode Sep 8, 2020

Choose a reason for hiding this comment