Trammell Hudson
3 years ago
parent
84edb86a34
commit
85b600afc9
@ -1,9 +1,3 @@
|
|||||||
# gitea
|
# gitea
|
||||||
|
|
||||||
After the `setup` script has run, the website *still* requires a click to finish the installation.
|
OIDC setup is now automated
|
||||||
Once that is done it will break since the OpenID login has not yet been configured. Run this to
|
|
||||||
fix it.
|
|
||||||
|
|
||||||
```
|
|
||||||
./add-auth
|
|
||||||
```
|
|
||||||
|
|||||||
@ -1,66 +0,0 @@
|
|||||||
#!/bin/bash
|
|
||||||
# run this *after* initializing the database by clicking on the ok
|
|
||||||
# issue filed https://github.com/go-gitea/gitea/issues/19616
|
|
||||||
source ../env.production
|
|
||||||
source ./env.production
|
|
||||||
source ../data/gitea/env.secrets
|
|
||||||
|
|
||||||
|
|
||||||
true || curl "https://${GITEA_HOSTNAME}/" \
|
|
||||||
-v \
|
|
||||||
-X POST \
|
|
||||||
-H 'Origin: null' \
|
|
||||||
-H 'Connection: keep-alive' \
|
|
||||||
-H 'Upgrade-Insecure-Requests: 1' \
|
|
||||||
-H 'Sec-Fetch-Dest: document' \
|
|
||||||
-H 'Sec-Fetch-Mode: navigate' \
|
|
||||||
-H 'Sec-Fetch-Site: same-origin' \
|
|
||||||
-H 'Sec-Fetch-User: ?1' \
|
|
||||||
-H 'TE: trailers' \
|
|
||||||
-H 'Cookie: i_like_gitea=ac81483e536b3641' \
|
|
||||||
-F "db_type=postgres" \
|
|
||||||
-F "db_host=db:5432" \
|
|
||||||
-F "db_user=gitea" \
|
|
||||||
-F "db_passwd=gitea" \
|
|
||||||
-F "db_name=gitea" \
|
|
||||||
-F "ssl_mode=disable" \
|
|
||||||
-F "db_schema=" \
|
|
||||||
-F "charset=utf8" \
|
|
||||||
-F "db_path=/data/gitea/gitea.db" \
|
|
||||||
-F "app_name=${REALM} Gitea" \
|
|
||||||
-F "repo_root_path=/data/git/repositories" \
|
|
||||||
-F "lfs_root_path=/data/git/lfs" \
|
|
||||||
-F "run_user=git" \
|
|
||||||
-F "domain=${GITEA_HOSTNAME}" \
|
|
||||||
-F "ssh_port=22" \
|
|
||||||
-F "http_port=3000" \
|
|
||||||
-F "app_url=https://${GITEA_HOSTNAME}/" \
|
|
||||||
-F "log_root_path=/data/gitea/log" \
|
|
||||||
-F "smtp_host=" \
|
|
||||||
-F "smtp_from=" \
|
|
||||||
-F "smtp_user=" \
|
|
||||||
-F "smtp_passwd=" \
|
|
||||||
-F "enable_federated_avatar=on" \
|
|
||||||
-F "enable_open_id_sign_in=on" \
|
|
||||||
-F "allow_only_external_registration=on" \
|
|
||||||
-F "default_allow_create_organization=on" \
|
|
||||||
-F "default_enable_timetracking=on" \
|
|
||||||
-F "no_reply_address=noreply.${GITEA_HOSTNAME}" \
|
|
||||||
-F "password_algorithm=pbkdf2" \
|
|
||||||
-F "admin_name=root" \
|
|
||||||
-F "admin_passwd=${GITEA_ADMIN_PASSWORD}" \
|
|
||||||
-F "admin_confirm_passwd=${GITEA_ADMIN_PASSWORD}" \
|
|
||||||
-F "admin_email=" \
|
|
||||||
|| die "unable to initiate install"
|
|
||||||
|
|
||||||
|
|
||||||
docker-compose exec -u git gitea \
|
|
||||||
gitea admin auth add-oauth \
|
|
||||||
--name "keycloak" \
|
|
||||||
--provider "openidConnect" \
|
|
||||||
--key "gitea" \
|
|
||||||
--secret "$GITEA_CLIENT_SECRET" \
|
|
||||||
--auto-discover-url "https://${KEYCLOAK_HOSTNAME}/realms/${REALM}/.well-known/openid-configuration" \
|
|
||||||
--group-claim-name "groups" \
|
|
||||||
--admin-group "admin" \
|
|
||||||
|| die "unable to add oauth interface"
|
|
||||||
Loading…
Reference in new issue