So,Basically i am running jupterhub with kubernetes using helm chart and i want to integrate with Keycloak, focusing on allowing users to sign in based on specific role.
hub:
config:
Authenticator:
enable_auth_state: true
admin_access: true
admin_users:
- admin
GenericOAuthenticator:
client_id: jupyterhub
client_secret: secret
oauth_callback_url: http://127.0.0.1:80/hub/oauth_callback
authorize_url: http://192.168.100.103:8180/realms/jupyter/protocol/openid-connect/auth
token_url: http://192.168.100.103:8180/realms/jupyter/protocol/openid-connect/token
userdata_url: http://192.168.100.103:8180/realms/jupyter/protocol/openid-connect/userinfo
claim_groups_key: roles
enable_auth_state: true
allowed_groups:
- nuodata-aiml-jupyterhub-role
scope:
- openid
- roles
login_service: keycloak
username_key: preferred_username
tls_verify: false
userdata_params:
state: state
JupyterHub:
authenticator_class: generic-oauth
Are my configurations in values.yaml correct or i am missing something?.
