mirror of
https://github.com/pomerium/pomerium.git
synced 2025-07-31 15:29:48 +02:00
docs: update okta service account docs to match new format (#972)
This commit is contained in:
Caleb Doxsey
GitHub
parent
cb08cb7a93
commit
451bdbeb0d
1 changed files with 10 additions and 2 deletions
|
|
@ -43,7 +43,15 @@ Next, we'll create API token so that Pomerium can retrieve and establish group m
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
Set this token in pomerium as your `IDP_SERVICE_ACCOUNT`. [Group ID](https://developer.okta.com/docs/reference/api/groups/) will be used to affirm group membership.
|
The format of the `idp_service_account` for Okta is a base64-encoded JSON document containing the generated API token:
|
||||||
|
|
||||||
|
```json
|
||||||
|
{
|
||||||
|
"api_token": "..."
|
||||||
|
}
|
||||||
|
```
|
||||||
|
|
||||||
|
[Group ID](https://developer.okta.com/docs/reference/api/groups/) will be used to affirm group membership.
|
||||||
|
|
||||||
Finally, configure Pomerium with the identity provider settings retrieved in the previous steps. Your [environmental variables] should look something like this.
|
Finally, configure Pomerium with the identity provider settings retrieved in the previous steps. Your [environmental variables] should look something like this.
|
||||||
|
|
||||||
|
|
@ -52,7 +60,7 @@ IDP_PROVIDER="okta"
|
||||||
IDP_PROVIDER_URL="https://dev-108295-admin.oktapreview.com/"
|
IDP_PROVIDER_URL="https://dev-108295-admin.oktapreview.com/"
|
||||||
IDP_CLIENT_ID="REPLACE_ME"
|
IDP_CLIENT_ID="REPLACE_ME"
|
||||||
IDP_CLIENT_SECRET="REPLACE_ME"
|
IDP_CLIENT_SECRET="REPLACE_ME"
|
||||||
IDP_SERVICE_ACCOUNT="REPLACE_ME" # api token
|
IDP_SERVICE_ACCOUNT="REPLACE_ME" # service account
|
||||||
```
|
```
|
||||||
|
|
||||||
[client id]: ../../configuration/readme.md#identity-provider-client-id
|
[client id]: ../../configuration/readme.md#identity-provider-client-id
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue