admin/airflow3-kub
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e5eec5b779c38de2f938fe19f723ae3c839c1764
airflow3-kub/helm/airflow/values.yaml
T
mbelfares f199ec7326 fix keycloak client secret
2026-06-08 11:42:07 +02:00

45 lines
1.4 KiB
YAML
Raw Blame History

executor: KubernetesExecutor
ingress:
apiServer:
enabled: true
ingressClassName: nginx
hosts:
- name: airflow.13.140.150.2.nip.io
tls:
enabled: false
path: "/"
pathType: "Prefix"
apiServer:
hostAliases:
- ip: "13.140.150.2"
hostnames:
- "keycloak.13.140.150.2.nip.io"
apiServerConfig: |
from flask_appbuilder.security.manager import AUTH_OAUTH
AUTH_TYPE = AUTH_OAUTH
AUTH_USER_REGISTRATION = True
AUTH_USER_REGISTRATION_ROLE = "Viewer"
OAUTH_PROVIDERS = [
{
"name": "keycloak",
"token_key": "access_token",
"icon": "fa-key",
"remote_app": {
"client_id": "airflow",
"client_secret": "93psJ7EWe95XEFf9MeWHKE5dbyNQpQnY",
"api_base_url": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect",
"request_token_url": None,
"access_token_url": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/token",
"authorize_url": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/auth",
"jwks_uri": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/certs",
"client_kwargs": {
"scope": "openid email profile"
}
}
}
]
Reference in New Issue View Git Blame Copy Permalink