nwsde / nwsde-azuretre

An accelerator to help organizations build Trusted Research Environments on Azure.
https://microsoft.github.io/AzureTRE
MIT License
0 stars 0 forks source link

Gitea configuration #50

Open jonnyry opened 4 months ago

jonnyry commented 4 months ago

Things to consider:

  1. SSO with Entra username
  2. User account provisioning / SCIM with Entra groups- is this possible?
  3. Isolation between research projects
  4. Pull synchronisation
  5. Push synchronisation
  6. Backups
  7. Backing store redundancy
  8. Admin + User documentation
  9. Upgrade Gitea to the latest version [DONE]
jonnyry commented 4 months ago

1. SSO with Entra username

1. Set up new App Registration in Entra:

Collect the Application ID, Client Secret, and to use in the next step. Also collect your Azure tenant ID.

2. Set up Gitea authentication:

Login as admin, go to Site Administration > Authentication Sources, then add a new source:

3. Set up the following environment variables (in Web App > Environment Variables)

GITEAserviceDISABLE_REGISTRATION = false GITEAserviceALLOW_ONLY_EXTERNAL_REGISTRATION = true GITEAserviceSHOW_REGISTRATION_BUTTON = false