search

dexidp / dex

OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
https://dexidp.io
Apache License 2.0
9.33k stars 1.68k forks source link

Dex configuration management via API #1754

Open pulkitmehra opened 4 years ago

pulkitmehra commented 4 years ago

I am a big fan of Dex, currently using it in our kubernetes cluster. As OIDC broker it would be nice if Dex has API to add static clients. What are the ways we can programmatically add clients to Dex or change configuration on the fly. Can we add APIs to Dex for configuration management? This feature is super useful in federated kubernetes cluster.

commixon commented 3 years ago

I would be willing to work on this. This is something that I would really like to have as a feature as well. Both for federated clusters as well as for programmatic configuration for different situations (e.g. short lived test-beds etc).

However, before committing to that, is there support for that? Are there any hard blockers/concerns that anybody has (i.e. security concerns etc)?

sagikazarmark commented 3 years ago

For clients, we already have an API: https://github.com/dexidp/dex/blob/master/api/api.proto#L163-L168

Not sure if that's what you are after.

For connectors, there is an outstanding PR: #1489

Sadly, this is not as trivial as one might think and the API is not in the center of our efforts at the moment. That's why these PRs are stalled.