tenthe commented on code in PR #196: URL: https://github.com/apache/streampipes-website/pull/196#discussion_r1705338478
########## docs/05_deploy-security.md: ########## @@ -70,6 +70,109 @@ Permissions can only be changed by admin users currently. In the overview section of each resource (e.g., pipelines and dashboards), a permission dialog is available to users with role ROLE_ADMIN. The dialog allows to assign users and groups to the individual resource. - - +## OAuth configuration + +It is possible to connect StreamPipes to an external authentication provider such as Keycloak, Azure AD or GitHub. +Multiple providers can be configured. + +To enable login over OAuth, several environment variables are available + +### General settings + +* `SP_OAUTH_ENABLED` set to `true` to enable OAuth +* `SP_OAUTH_REDIRECT_URI` set to the base URI where StreamPipes is running, e.g., `http://localhost:80` + +### Provider-specific settings + +For each configured provider, individual settings can be provided. The scheme for environment variables is `SP_OAUTH_{PROVIDER_ID}.*`. +FOr instance, if you want to define two providers Azure and GitHub, you can add an individual block `SP_OAUTH_PROVIDER_AZURE.*` and `SP_OAUTH_PROVIDER_GITHUB` to provide the individual authentication settings for each provider. Review Comment: ```suggestion For instance, if you want to define two providers Azure and GitHub, you can add an individual block `SP_OAUTH_PROVIDER_AZURE.*` and `SP_OAUTH_PROVIDER_GITHUB` to provide the individual authentication settings for each provider. ``` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
