public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
29fcc463336f7f0e00e94de6fe1cc6350c4eb0da
grafana/devenv/docker/blocks/auth/authentik
History
Jo 77437f2c89 Add multi-auth devenv (#57609) 
* add authentik devenv

* remove direct dependency on spew

* use cn

* add authentik instructions

* add backup instructions
2022-10-26 13:46:50 +02:00
..
cloak.sql
Add multi-auth devenv (#57609)
2022-10-26 13:46:50 +02:00
docker-compose.yaml
Add multi-auth devenv (#57609)
2022-10-26 13:46:50 +02:00
ldap_authentik.toml
Add multi-auth devenv (#57609)
2022-10-26 13:46:50 +02:00
README.md
Add multi-auth devenv (#57609)
2022-10-26 13:46:50 +02:00

README.md

Authentik block

Authentik is an open source idP that supports LDAP, SAML, OAuth.

Useful for testing a second implementation

Currently configured in DB and instructions

  • LDAP
  • SAML
  • OAuth

Deployment

First build and deploy the openldap container.

make devenv sources=auth/authentik

Exposed ports

The container will expose port 3389 and 6636 as LDAP and LDAPS.

The container will expose port 9000 for API and Admin interface.

LDAP Setup

The following changes are needed at Grafana's configuration file.

[auth.ldap]
enabled = true
config_file = devenv/docker/blocks/auth/authentik/ldap_authentik.toml

sync_cron = "* * * * 1"
active_sync_enabled = true

Available users and groups

authentik admin:

  • username: akadmin
  • email: admin@localhost
  • password: admin

grafana logins:

  • username: authentik-admin

  • password: grafana

  • username: authentik-editor

  • password: grafana

  • username: authentik-viewer

  • password: grafana

Backing up DB

In case you want to make changes to the devenv setup, you can dump keycloak's DB:

cd devenv;
docker-compose exec -T authentikdb bash -c "pg_dump -U authentik authentik" > docker/blocks/auth/authentik/cloak.sql
Reference in New Issue View Git Blame Copy Permalink