diff options
Diffstat (limited to '')
| -rw-r--r-- | docs/forgejo.org | 5 | ||||
| -rw-r--r-- | docs/keycloak.org | 24 |
2 files changed, 29 insertions, 0 deletions
diff --git a/docs/forgejo.org b/docs/forgejo.org new file mode 100644 index 0000000..28edec1 --- /dev/null +++ b/docs/forgejo.org @@ -0,0 +1,5 @@ +* Forgejo + +Running at https://code.fcuny.net + +Reverse proxy on the digital ocean host. diff --git a/docs/keycloak.org b/docs/keycloak.org new file mode 100644 index 0000000..e29350f --- /dev/null +++ b/docs/keycloak.org @@ -0,0 +1,24 @@ +* Keycloak + +Running at id.fcuny.net + +There's an admin user in 1password. + +** Client for forgejo +- create a client with name =forgejo= +- set root URL to =https://code.fcuny.net= +- set home URL to =https://code.fcuny.net= +- set valid redirects URL to =https://code.fcuny.net*= +- set web origins to =https://code.fcuny.net= +- set admin URL to https://code.fcuny.net +- set client authentication to =on= +- keep =standard flow= checked and nothing else +*** forgejo configuration +- create a new authentication source under https://code.fcuny.net/admin/auths +- choose OAuth2 +- set the name to =id.fcuny.net= +- set OAuth2 provider to OpenID Connect +- configure the OpenID realm to =https://id.fcuny.net/realms/master/.well-known/openid-configuration= +- the client ID is =forgejo= +- the client secret is in the =credentials= tab in forgejo for the client +- select =skip local 2FA= |