update docs
This commit is contained in:
parent
34bcf32017
commit
a905a900c4
4 changed files with 37 additions and 20 deletions
|
@ -9,15 +9,20 @@ abra app config app_name
|
||||||
abra app deploy app_name
|
abra app deploy app_name
|
||||||
```
|
```
|
||||||
|
|
||||||
TODO: SECRETS
|
|
||||||
Passwörter für akadmin, token sichern
|
## Flows
|
||||||
|
|
||||||
|
-> flows -> import
|
||||||
|
change background image
|
||||||
|
add flows to system -> umgebung -> your tenant
|
||||||
|
|
||||||
|
## email template
|
||||||
|
|
||||||
|
docker cp initial-reset.html sso_app:/templates/
|
||||||
|
phasen -> default-recovery-email -> email template
|
||||||
|
|
||||||
|
|
||||||
### openid-connect endpoints
|
## Theming
|
||||||
|
docker cp holsteincloud.svg sso_app:/media/
|
||||||
|
|
||||||
https://sso.example.org/application/o/authorize/
|
System -> Umgebung -> Logo / Favicon: /media/holsteincloud.svg
|
||||||
https://sso.example.org/application/o/token/
|
|
||||||
https://sso.example.org/application/o/userinfo/
|
|
||||||
https://sso.example.org/application/o/nextcloud/end-session/
|
|
||||||
|
|
||||||
---
|
|
|
@ -4,6 +4,7 @@
|
||||||
im authentik:
|
im authentik:
|
||||||
openid-provider anlegen
|
openid-provider anlegen
|
||||||
app anlegen
|
app anlegen
|
||||||
|
redirect uri: https://cloud.example.org/apps/sociallogin/custom_oidc/authentik
|
||||||
|
|
||||||
|
|
||||||
```
|
```
|
||||||
|
@ -38,11 +39,11 @@ abra app run --user www-data servername_cloud app /var/www/html/occ config:app:s
|
||||||
{
|
{
|
||||||
"name": "authentik",
|
"name": "authentik",
|
||||||
"title": "SKA",
|
"title": "SKA",
|
||||||
"authorizeUrl": "https://sso.he.local-it.org/application/o/authorize/",
|
"authorizeUrl": "https://sso.example.org/application/o/authorize/",
|
||||||
"tokenUrl": "https://sso.he.local-it.org/application/o/token/",
|
"tokenUrl": "https://sso.example.org/application/o/token/",
|
||||||
"displayNameClaim": "preferred_username",
|
"displayNameClaim": "preferred_username",
|
||||||
"userInfoUrl": "https://sso.he.local-it.org/application/o/userinfo/",
|
"userInfoUrl": "https://sso.example.org/application/o/userinfo/",
|
||||||
"logoutUrl": "https://sso.he.local-it.org/application/o/nextcloud/end-session/",
|
"logoutUrl": "https://sso.example.org/application/o/nextcloud/end-session/",
|
||||||
"clientId": "nextcloud",
|
"clientId": "nextcloud",
|
||||||
"clientSecret": "secret",
|
"clientSecret": "secret",
|
||||||
"scope": "openid profile email nextcloud",
|
"scope": "openid profile email nextcloud",
|
||||||
|
|
|
@ -12,6 +12,9 @@ abra deploy app_name
|
||||||
|
|
||||||
im authentik:
|
im authentik:
|
||||||
openid-provider anlegen
|
openid-provider anlegen
|
||||||
|
id: wekan
|
||||||
|
geheminis: secret von abra
|
||||||
|
redirect uris: https://board.example.org/_oauth/oidc
|
||||||
app anlegen
|
app anlegen
|
||||||
|
|
||||||
|
|
||||||
|
|
|
@ -1,6 +1,19 @@
|
||||||
# Installation
|
# Installation
|
||||||
|
|
||||||
Basierend auf [abra](https://git.coopcloud.tech/coop-cloud/abra) von [coopcloud](https://coopcloud.tech)
|
Unser Setup basiert auf [abra](https://git.coopcloud.tech/coop-cloud/abra) von [coopcloud](https://coopcloud.tech)
|
||||||
|
|
||||||
|
|
||||||
|
## Voraussetzungen
|
||||||
|
|
||||||
|
* SSH-Zugang zu einem Server
|
||||||
|
z.B. VPS (Virtual-Private-Server 2vCPU; 4GB RAM; 200GB Speicher) von windcloud.de
|
||||||
|
* öffentliche IPv4 Adresse
|
||||||
|
* Domain mit Zugriff zur DNS Einstellung:
|
||||||
|
A auf IPv4
|
||||||
|
*.example.org CNAME auf example.org
|
||||||
|
|
||||||
|
oder falls wildcard nicht möglich cnames für alle apps anlegen (cloud.example.org, board.example.org, office.example.org)
|
||||||
|
|
||||||
|
|
||||||
## Basis System
|
## Basis System
|
||||||
|
|
||||||
|
@ -42,11 +55,6 @@ Für weitere Details: [docs.coopcloud.tech](https://docs.coopcloud.tech/deploy/)
|
||||||
|
|
||||||
Wir verwenden Traefik als Reverse-Proxy. Er erkennt automatisch Apps im Docker Swarm und leitet von den konfigurierten Subdomains auf die entsprechenden Apps um.
|
Wir verwenden Traefik als Reverse-Proxy. Er erkennt automatisch Apps im Docker Swarm und leitet von den konfigurierten Subdomains auf die entsprechenden Apps um.
|
||||||
|
|
||||||
Docker Netzwerk erstellen
|
|
||||||
```
|
|
||||||
docker network create -d overlay --scope swarm proxy
|
|
||||||
```
|
|
||||||
|
|
||||||
```
|
```
|
||||||
abra app new traefik
|
abra app new traefik
|
||||||
abra app config example_traefik # only if custom config needed
|
abra app config example_traefik # only if custom config needed
|
||||||
|
|
Loading…
Reference in a new issue