search

deployKF / website

the website for deployKF
https://www.deploykf.org/
Apache License 2.0
2 stars 7 forks source link

Document userNameKey for AWS Cognito #112

Closed owu-1 closed 5 months ago

owu-1 commented 5 months ago

Add userNameKey: cognito:username to the AWS Cognito provider example here otherwise you cannot login. Here is someone's explanation https://github.com/argoproj/argo-cd/discussions/12185#discussioncomment-4799460.

Also maybe remove the offline_access scope? I don't know what that is and it errors with "invalid scope" when I add it.

thesuperzapper commented 5 months ago

@owu-1 thanks for the catch on the userNameKey.

I think it must be another non-standard Cognito thin that offline_access is not recognised (in most OIDC providers, this tells the provider to issue a refresh_token).

Can you tell me if you are being forced to re-log every 60 minuets (because that would indicate that the refresh token is not working)?

owu-1 commented 5 months ago

After 60 minutes it doesn't ask me to login in again

thesuperzapper commented 5 months ago

I have updated the website: https://www.deploykf.org/guides/platform/deploykf-authentication/#aws-cognito

Thanks!