feat: OIDC configuration in global Settings (ENV or DB)
- Add oidc_* attributes to Setting, migration and Config helpers - Secrets and OidcRoleSyncConfig read from Config (ENV overrides DB) - GlobalSettingsLive: OIDC section with disabled fields when ENV set - OIDC role sync tests use DataCase for DB access
This commit is contained in:
parent
f29bbb02a2
commit
8edbbac95f
GPG key ID:
1020A035E5DD0824
8 changed files with 487 additions and 136 deletions
29
priv/repo/migrations/20260224122831_add_oidc_to_settings.exs
Normal file
29
priv/repo/migrations/20260224122831_add_oidc_to_settings.exs
Normal file
|
|
@ -0,0 +1,29 @@
|
|||
defmodule Mv.Repo.Migrations.AddOidcToSettings do
|
||||
@moduledoc """
|
||||
Adds OIDC configuration columns to settings (ENV-overridable in UI).
|
||||
"""
|
||||
|
||||
use Ecto.Migration
|
||||
|
||||
def up do
|
||||
alter table(:settings) do
|
||||
add :oidc_client_id, :string
|
||||
add :oidc_base_url, :string
|
||||
add :oidc_redirect_uri, :string
|
||||
add :oidc_client_secret, :string
|
||||
add :oidc_admin_group_name, :string
|
||||
add :oidc_groups_claim, :string
|
||||
end
|
||||
end
|
||||
|
||||
def down do
|
||||
alter table(:settings) do
|
||||
remove :oidc_client_id
|
||||
remove :oidc_base_url
|
||||
remove :oidc_redirect_uri
|
||||
remove :oidc_client_secret
|
||||
remove :oidc_admin_group_name
|
||||
remove :oidc_groups_claim
|
||||
end
|
||||
end
|
||||
end
|
||||
Loading…
Add table
Add a link
Reference in a new issue