2021-06-14 08:39:46 +02:00
|
|
|
---
|
|
|
|
title: Keycloak
|
|
|
|
description: Centralisation de l’authentification
|
|
|
|
published: true
|
2021-06-14 08:40:15 +02:00
|
|
|
date: 2021-06-14T06:40:14.126Z
|
2021-06-14 08:39:46 +02:00
|
|
|
tags:
|
|
|
|
editor: markdown
|
|
|
|
dateCreated: 2021-05-24T10:34:51.230Z
|
|
|
|
---
|
|
|
|
|
|
|
|
# Présentation
|
|
|
|
|
|
|
|
# Installation
|
|
|
|
|
|
|
|
# Configuration
|
|
|
|
|
|
|
|
## Portainer
|
|
|
|
|
2021-06-14 08:40:15 +02:00
|
|
|
![](/images/image_2021-05-03_212514.png)
|
2021-06-14 08:39:46 +02:00
|
|
|
|
|
|
|
## Grafana
|
|
|
|
|
2021-06-14 08:40:15 +02:00
|
|
|
```yaml
|
2021-06-14 08:39:46 +02:00
|
|
|
- GF_AUTH_GENERIC_OAUTH_ENABLED=true
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_SCOPES=email
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_NAME=<NAME>
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_ALLOW_SIGN_UP=true
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_CLIENT_ID=grafana
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_CLIENT_SECRET=<CLIENT_SECRET>
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_AUTH_URL=https://<URL>/auth/realms/<REALMS>/protocol/openid-connect/auth
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_TOKEN_URL=https://<URL>/auth/realms/<REALMS>/protocol/openid-connect/token
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_API_URL=https://<URL>/auth/realms/<REALMS>/protocol/openid-connect/userinfo
|
|
|
|
- GF_AUTH_GENERIC_OAUTH_ROLE_ATTRIBUTE_PATH=contains(roles[*], 'admin') && 'Admin' || contains(roles[*], 'editor') && 'Editor' || 'Viewer'
|
|
|
|
```
|
|
|
|
|
|
|
|
## WikiJS
|