github.com/pf-qiu/concourse/v6@v6.7.3-0.20201207032516-1f455d73275f/hack/overrides/saml.yml

github.com/pf-qiu/concourse/v6@v6.7.3-0.20201207032516-1f455d73275f/hack/overrides/saml.yml (about)

     1  # saml.yml - a docker-compose override that adds a SAML auth to the stack
     2  #
     3  # Once running, head to `localhost:8000/simplesaml/` to get access to the IDP
     4  #
     5  # There are 2 users and an admin account:
     6  # user1:user1pass
     7  # user2:user2pass
     8  # admin:secret
     9  #
    10  # ref: https://hub.docker.com/r/kristophjunge/test-saml-idp/
    11  # ref: https://docs.docker.com/compose/extends/
    12  #
    13  version: '3'
    14  
    15  services:
    16    web:
    17      environment:
    18        # CONCOURSE_MAIN_TEAM_SAML_USER: user1@example.com
    19        CONCOURSE_MAIN_TEAM_SAML_GROUP: group2
    20  
    21        CONCOURSE_SAML_SSO_URL: http://localhost:8000/simplesaml/saml2/idp/SSOService.php
    22        CONCOURSE_SAML_ENTITY_ISSUER: concourse
    23        CONCOURSE_SAML_USERNAME_ATTR: email
    24        CONCOURSE_SAML_GROUPS_ATTR: eduPersonAffiliation
    25        CONCOURSE_SAML_SKIP_SSL_VALIDATION: "true"
    26        # still need to specify file even if we skip tls
    27        CONCOURSE_SAML_CA_CERT: /bin/sh
    28  
    29    saml:
    30      image: kristophjunge/test-saml-idp
    31      ports:
    32      - 8000:8080
    33      environment:
    34        SIMPLESAMLPHP_SP_ENTITY_ID: concourse
    35        SIMPLESAMLPHP_SP_ASSERTION_CONSUMER_SERVICE: http://localhost:8080/sky/issuer/callback
    36