ClusterCockpit/cc-backend
1
0
Fork 0
mirror of https://github.com/ClusterCockpit/cc-backend synced 2024-11-13 02:17:25 +01:00
Code Issues Packages Releases Activity

Extend config schema

Browse Source
This commit is contained in:
Jan Eitzinger 2023-08-18 09:19:55 +02:00
parent 56d559fdd7
commit 6185635aa9
2 changed files with 30 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/schema/config.go
View File

@ -25,7 +25,7 @@ type LdapConfig struct {
type JWTAuthConfig struct { type JWTAuthConfig struct {
// Specifies for how long a JWT token shall be valid // Specifies for how long a JWT token shall be valid
// as a string parsable by time.ParseDuration(). // as a string parsable by time.ParseDuration().
MaxAge int64 `json:"max-age"` MaxAge string `json:"max-age"`
// Specifies which cookie should be checked for a JWT token (if no authorization header is present) // Specifies which cookie should be checked for a JWT token (if no authorization header is present)
CookieName string `json:"cookieName"` CookieName string `json:"cookieName"`

32
pkg/schema/schemas/config.schema.json
View File

@ -127,9 +127,34 @@
"description": "Do not show running jobs shorter than X seconds.", "description": "Do not show running jobs shorter than X seconds.",
"type": "integer" "type": "integer"
}, },
"": { "jwts": {
"description": "", "description": "For JWT token authentication.",
"type": "string" "type": "object",
"properties": {
"max-age": {
"description": "Configure how long a token is valid. As string parsable by time.ParseDuration()",
"type": "string"
},
"cookieName": {
"description": "Cookie that should be checked for a JWT token.",
"type": "string"
},
"validateUser": {
"description": "Deny login for users not in database (but defined in JWT). Overwrite roles in JWT with database roles.",
"type": "boolean"
},
"trustedIssuer": {
"description": "Issuer that should be accepted when validating external JWTs ",
"type": "string"
},
"syncUserOnLogin": {
"description": "Add non-existent user to DB at login attempt with values provided in JWT.",
"type": "boolean"
}
},
"required": [
"max-age"
]
}, },
"ldap": { "ldap": {
"description": "For LDAP Authentication and user synchronisation.", "description": "For LDAP Authentication and user synchronisation.",
@ -398,6 +423,7 @@
} }
}, },
"required": [ "required": [
"jwts",
"clusters" "clusters"
] ]
} }