Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # kubectl explain dexproviders.spec.oidc
- KIND: DexProvider
- VERSION: deckhouse.io/v1
- RESOURCE: oidc <Object>
- DESCRIPTION:
- Parameters of the OIDC (intended for the `type: OIDC`).
- FIELDS:
- basicAuthUnsupported <boolean>
- Use POST requests to interact with the provider instead of including the
- token in the Basic Authorization header. Generally, dex automatically
- determines the type of request to make, while in some cases enabling this
- parameter can help.
- clientID <string> -required-
- OIDC issuer application ID.
- clientSecret <string> -required-
- OIDC issuer application secret key.
- getUserInfo <boolean>
- Request additional info about the authenticated user.
- Learn more
- [here](https://openid.net/specs/openid-connect-core-1_0.html#UserInfo)...
- insecureSkipEmailVerified <boolean>
- Allow authentication for clients without verified email address.
- issuer <string> -required-
- Canonical URL of the provider, also used for configuration discovery. This
- value MUST match the value returned in the provider config discovery.
- promptType <string>
- Determines if the Issuer should ask for confirmation and provide hints
- during the authentication process.
- By default, the confirmation will be requested on the first authentication.
- Possible values may vary depending on the Issuer.
- scopes <[]string>
- List of [additional
- scopes](https://github.com/dexidp/website/blob/main/content/docs/custom-scopes-claims-clients.md)
- to request in token response.
- userIDKey <string>
- The [claim](https://openid.net/specs/openid-connect-core-1_0.html#Claims)
- to use as the user id.
- userNameKey <string>
- The [claim](https://openid.net/specs/openid-connect-core-1_0.html#Claims)
- to use as the user name.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement