How can I set OIDC User or Group?

alphagov / terraform-provider-concourse

A terraform provider for Concourse

MIT License

50 stars 28 forks source link

How can I set OIDC User or Group? #15

Open kyunse opened 3 years ago

kyunse commented 3 years ago

I set github outh but our team need to change it to keycloak using oidc.

below team resource. guide me to set owners arg. please...

resource "concourse_team" "my_team" {

  team_name = "myteam"
  owners = [

  ]
}

yashbhutwala commented 3 years ago

+1 is this possible?

yashbhutwala commented 3 years ago

I would like to do this for generic oauth: https://concourse-ci.org/generic-oauth.html. Here is how I manage it currently without terraform...

roles:
- name: owner
  oauth:
    users:
    - USER1

risicle commented 3 years ago

Afraid we currently don't support that because we don't ourselves use that feature. Patches welcome with the caveat that they would have to come with clear tests, because, as I say, we don't use that feature and wouldn't know if it actually works or got broken.

bartlett-ops commented 2 years ago

It is possible to configure OIDC like so:

resource "concourse_team" "platform" {
  team_name = "platform"
  owners = [ 
    "user:local:root",
  ]
  members = [ 
    "group:oidc:my-team@example.com",
  ]
}