Join Slack
News
Docs
Blog
Github

gabibbo97/dex

Chart version: 4.0.2
Api version: v2
App version: v2.27.0
OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Plug...
application
Chart Type
Active
Status
Unknown
License
3272
Downloads
https://gabibbo97.github.io/charts
Set me up:
helm repo add center https://repo.chartcenter.io
Install Chart:
helm install dex center/gabibbo97/dex
Versions (0)

dex

dex is an OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors

TL;DR

helm install gabibbo97/dex

Introduction

This chart bootstraps an in-cluster dex identity provider

Configuration options

Parameter Description Default
connectors List of Dex connectors []
staticClients List of Dex clients []
staticPasswords List of Dex users []
JSONLogging Enable JSON format for logs false
dexExternalURL URL that Dex will use as its own Value of ingress.hosts[0].host
OAuth2.responseTypes The OAuth2 flows that will be supported ['code']
OAuth2.skipApprovalScreen If possible avoid showing an approval screen true
OAuth2.alwaysShowLoginScreen Always show a login screen false
OAuth2.passwordConnector Use one of the predefined connectors instead of Dex to perform password grants ā€œ
prometheusOperator.serviceMonitor.enable Deploy a ServiceMonitor resource false

Connectors

See the documentation for details

connectors:
- type: <Connector kind>
  name: <Connector name>
  id: <Connector ID>
  config:
    <YAML Configuration>

Static clients

staticClients:
- id: <Client ID>
  redirectURIs:
  - <Redirect URI pattern>
  name: <Client name>
  secret: <Client secret>
  # Allow other client to issue tokens
  # Valid for this one
  # e.g. auth webapp and backend
  trustedPeers:
  - <Other client ID>

Easy generation of client secrets

tr -dc a-zA-Z0-9 < /dev/urandom | head -c 32; echo ''

Static passwords

- email: "<email>"
  hash: "<bcrypt hash>"
  username: "<username>"

Easy generation of bcrypt secrets

htpasswd -bnBC 10 "usr" <Password> | cut -d ':' -f 2 | sed 's/2y/2a/'

Trying out your Dex installation

kubectl port-forward svc/dex 5555:http
curl -k 127.0.0.1:5555/.well-known/openid-configuration | jq

Advanced configuration

This chart provides a plug and play installation of Dex.

If you desire to manually configure Dex you can set up the variables dexConfig and dexEnvironment to have a completely custom installation of Dex.