cloudron/minio-app
1
0
Fork 0
mirror of https://git.cloudron.io/cloudron/minio-app synced 2025-09-26 15:07:24 +00:00
Code Issues Releases Wiki Activity

OIDC auth implemented, tests updated

Browse Source
This commit is contained in:
Vladimir D
2024-02-19 17:13:57 +04:00
parent 88918c602a
commit 7417ce44e5
6 changed files with 113 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
start.sh
View File

@@ -17,6 +17,19 @@ if [[ ! -d /app/data/mc_config ]]; then
/app/code/mc --config-dir /app/data/mc_config &> /dev/null || true
fi
if [[ -n "${CLOUDRON_OIDC_ISSUER:-}" ]]; then
export MINIO_IDENTITY_OPENID_DISPLAY_NAME="Cloudron"
export MINIO_IDENTITY_OPENID_CONFIG_URL="${CLOUDRON_OIDC_DISCOVERY_URL}"
export MINIO_IDENTITY_OPENID_CLIENT_ID="${CLOUDRON_OIDC_CLIENT_ID}"
export MINIO_IDENTITY_OPENID_CLIENT_SECRET="${CLOUDRON_OIDC_CLIENT_SECRET}"
export MINIO_IDENTITY_OPENID_SCOPES="openid profile email"
if [[ -z "${MINIO_IDENTITY_OPENID_ROLE_POLICY:-}" ]]; then
export MINIO_IDENTITY_OPENID_ROLE_POLICY="readwrite"
fi
export MINIO_IDENTITY_OPENID_COMMENT="Cloudron OIDC"
fi
# minio is used for backups at times and has a large number of files. optimize by checking if files are actually in correct chown state
echo "==> Changing ownership"
[[ $(stat --format '%U' /app/data/data) != "cloudron" ]] && chown -R cloudron:cloudron /app/data