This CR OIDCRelyingParty specifies how the Airlock Microgateway Engine interacts with an OpenID Connect provider such as Airlock IAM. The CR OIDCProvider is referenced, allowing reuse for different back-ends.
Example configuration
For the default and example configuration, see CR OIDCRelyingParty reference documentation.
- About the example configuration:
- The referenced CR OIDCProvider specifies the OpenID Connect provider, e.g., Airlock IAM. Currently, only client secret-based authentication via
BasicAuthor FormURLEncodedPOST body is available. - When accessing the
logoutPath, the user is logged out from the OIDC relying party. If required, logout from the OIDC provider must be triggered separately.
The Secret requires the key client.secret for the password string as in the following example:
apiVersion: v1 kind: Secret metadata: name: oidc-client-secret stringData: client.secret: "myClientSecret1234"
Further information and links
- API Reference:
- CR OIDCRelyingParty reference documentation