You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I should be getting a login landing page for my OAuth GitHub App like this one here:
However, the moment I deploy the changes with SSO enabled, the web-ui pod dies. I'm sure the envs get passed along with the temporal-auth-client-secret because when I inspect the pod I see this:
Temporal Version: Helm Chart v0.51.0 and Temporal Web 2.31.2
I'm using Kubernetes
I'm using an OAuth App in GitHub
Here's the feedback I got in the previous issue:
This is not a bug with the helm chart, but a configuration issue for the ui-server. You can file an issue against here: https://github.com/temporalio/ui. At a quick glance though, it does not look like Github OIDC is supported by the UI Server as I don't think it provides a "well known" endpoint. It's this endpoint that the UI Server expects to see in the TEMPORAL_AUTH_PROVIDER_URL so it can discover the authorize and token endpoints. Currently the UI Server does not offer a way to configure the authorize and token endpoints separately which would be required to support Github for OIDC.
The text was updated successfully, but these errors were encountered:
Describe the bug
I'm migrating the issue from here.
Basically, I've been trying to enable SSO in temporal web ui using an OAuth app created in GitHub.
To Reproduce
Steps to reproduce the behavior:
In my case, run temporal on kubernetes and create an OAuth app in GitHub. Plug in the values, as shown here:
Deploy and expect failure.
Expected behavior
I should be getting a login landing page for my OAuth GitHub App like this one here:
However, the moment I deploy the changes with SSO enabled, the
web-ui
pod dies. I'm sure theenvs
get passed along with thetemporal-auth-client-secret
because when I inspect the pod I see this:When I check the logs, I get a huge HTML from GitHub that when rendered says it's a
404
.This is what the log starts with:
Additional context
2.31.2
Here's the feedback I got in the previous issue:
The text was updated successfully, but these errors were encountered: