[PR #550] [MERGED] fix #548: Add support for OIDC configuration thru the helm #1132

New Issue

Closed

opened 2025-10-09 19:09:28 +03:00 by OVERLORD · 0 comments

OVERLORD commented 2025-10-09 19:09:28 +03:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/plankanban/planka/pull/550
Author: @eternity1984
Created: 11/18/2023
Status: ✅ Merged
Merged: 11/20/2023
Merged by: @meltyshev

Base: master ← Head: feat-helm-oidc

---

📝 Commits (2)

• cfac5a6 Add support for OIDC configuration thru the helm
• 4d1aa72 chore: Update version

📊 Changes

4 files changed (+110 additions, -1 deletions)

View changed files

📝 charts/planka/Chart.yaml (+1 -1)
📝 charts/planka/templates/deployment.yaml (+27 -0)
➕ charts/planka/templates/secret-oidc.yaml (+17 -0)
📝 charts/planka/values.yaml (+65 -0)

📄 Description

In this PR, makes it easier to configure an oidc thru helm.

For example:

oidc:
  enabled: true
  clientId: sxxaAIAxVXlCxTmc1YLHBbQr8NL8MqLI2DUbt42d
  clientSecret: om4RTMRVHRszU7bqxB7RZNkHIzA8e4sGYWxeCwIMYQXPwEBWe4SY5a0wwCe9ltB3zrq5f0dnFnp34cEHD7QSMHsKvV9AiV5Z7eqDraMnv0I8IFivmuV5wovAECAYreSI
  issuerUrl: https://auth.local/application/o/planka/
  # scopes: []
  admin:
    # ignoreRoles: false
    # rolesAttribute: groups
    roles:
      - planka-admin

% kubectl describe deploy planka
Name:                   planka
Namespace:              planka
CreationTimestamp:      Sat, 18 Nov 2023 11:10:12 +0900
Labels:                 app.kubernetes.io/instance=planka
                        app.kubernetes.io/managed-by=Helm
                        app.kubernetes.io/name=planka
                        app.kubernetes.io/version=1.15.0
                        helm.sh/chart=planka-0.1.10
Annotations:            deployment.kubernetes.io/revision: 1
                        meta.helm.sh/release-name: planka
                        meta.helm.sh/release-namespace: planka
Selector:               app.kubernetes.io/instance=planka,app.kubernetes.io/name=planka
Replicas:               1 desired | 1 updated | 1 total | 1 available | 0 unavailable
StrategyType:           RollingUpdate
MinReadySeconds:        0
RollingUpdateStrategy:  25% max unavailable, 25% max surge
Pod Template:
  Labels:           app.kubernetes.io/instance=planka
                    app.kubernetes.io/name=planka
  Service Account:  planka
  Containers:
   planka:
    Image:      ghcr.io/plankanban/planka:1.14.3
    Port:       1337/TCP
    Host Port:  0/TCP
    Liveness:   http-get http://:http/ delay=0s timeout=1s period=10s #success=1 #failure=3
    Readiness:  http-get http://:http/ delay=0s timeout=1s period=10s #success=1 #failure=3
    Environment:
      DATABASE_URL:            <set to the key 'uri' in secret 'planka-postgresql-svcbind-custom-user'>  Optional: false
      BASE_URL:                http://localhost
      SECRET_KEY:              PH/HcmBWzuTupMNewbIBf+1b72m234E8eTpgud9LfQkEgze3Ke4QDwlduFWn
      TRUST_PROXY:             0
      DEFAULT_ADMIN_EMAIL:     
      DEFAULT_ADMIN_PASSWORD:  
      DEFAULT_ADMIN_NAME:      
      DEFAULT_ADMIN_USERNAME:  
      OIDC_CLIENT_ID:          <set to the key 'clientId' in secret 'planka-oidc'>      Optional: false
      OIDC_CLIENT_SECRET:      <set to the key 'clientSecret' in secret 'planka-oidc'>  Optional: false
      OIDC_ISSUER:             https://auth.local/application/o/planka/
      OIDC_SCOPES:             openid profile email
      OIDC_ADMIN_ROLES:        planka-admin
      OIDC_ROLES_ATTRIBUTE:    groups
    Mounts:
       ...

Fixes issue #548

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/plankanban/planka/pull/550 **Author:** [@eternity1984](https://github.com/eternity1984) **Created:** 11/18/2023 **Status:** ✅ Merged **Merged:** 11/20/2023 **Merged by:** [@meltyshev](https://github.com/meltyshev) **Base:** `master` ← **Head:** `feat-helm-oidc` --- ### 📝 Commits (2) - [`cfac5a6`](https://github.com/plankanban/planka/commit/cfac5a6571eabaf3d0befd7d032ce34c48c93752) Add support for OIDC configuration thru the helm - [`4d1aa72`](https://github.com/plankanban/planka/commit/4d1aa72208c2059aa60113690b7e47b4b0cac9c5) chore: Update version ### 📊 Changes **4 files changed** (+110 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `charts/planka/Chart.yaml` (+1 -1) 📝 `charts/planka/templates/deployment.yaml` (+27 -0) ➕ `charts/planka/templates/secret-oidc.yaml` (+17 -0) 📝 `charts/planka/values.yaml` (+65 -0) </details> ### 📄 Description In this PR, makes it easier to configure an oidc thru helm. For example: ```yaml oidc: enabled: true clientId: sxxaAIAxVXlCxTmc1YLHBbQr8NL8MqLI2DUbt42d clientSecret: om4RTMRVHRszU7bqxB7RZNkHIzA8e4sGYWxeCwIMYQXPwEBWe4SY5a0wwCe9ltB3zrq5f0dnFnp34cEHD7QSMHsKvV9AiV5Z7eqDraMnv0I8IFivmuV5wovAECAYreSI issuerUrl: https://auth.local/application/o/planka/ # scopes: [] admin: # ignoreRoles: false # rolesAttribute: groups roles: - planka-admin ``` ``` % kubectl describe deploy planka Name: planka Namespace: planka CreationTimestamp: Sat, 18 Nov 2023 11:10:12 +0900 Labels: app.kubernetes.io/instance=planka app.kubernetes.io/managed-by=Helm app.kubernetes.io/name=planka app.kubernetes.io/version=1.15.0 helm.sh/chart=planka-0.1.10 Annotations: deployment.kubernetes.io/revision: 1 meta.helm.sh/release-name: planka meta.helm.sh/release-namespace: planka Selector: app.kubernetes.io/instance=planka,app.kubernetes.io/name=planka Replicas: 1 desired | 1 updated | 1 total | 1 available | 0 unavailable StrategyType: RollingUpdate MinReadySeconds: 0 RollingUpdateStrategy: 25% max unavailable, 25% max surge Pod Template: Labels: app.kubernetes.io/instance=planka app.kubernetes.io/name=planka Service Account: planka Containers: planka: Image: ghcr.io/plankanban/planka:1.14.3 Port: 1337/TCP Host Port: 0/TCP Liveness: http-get http://:http/ delay=0s timeout=1s period=10s #success=1 #failure=3 Readiness: http-get http://:http/ delay=0s timeout=1s period=10s #success=1 #failure=3 Environment: DATABASE_URL: <set to the key 'uri' in secret 'planka-postgresql-svcbind-custom-user'> Optional: false BASE_URL: http://localhost SECRET_KEY: PH/HcmBWzuTupMNewbIBf+1b72m234E8eTpgud9LfQkEgze3Ke4QDwlduFWn TRUST_PROXY: 0 DEFAULT_ADMIN_EMAIL: DEFAULT_ADMIN_PASSWORD: DEFAULT_ADMIN_NAME: DEFAULT_ADMIN_USERNAME: OIDC_CLIENT_ID: <set to the key 'clientId' in secret 'planka-oidc'> Optional: false OIDC_CLIENT_SECRET: <set to the key 'clientSecret' in secret 'planka-oidc'> Optional: false OIDC_ISSUER: https://auth.local/application/o/planka/ OIDC_SCOPES: openid profile email OIDC_ADMIN_ROLES: planka-admin OIDC_ROLES_ATTRIBUTE: groups Mounts: ... ``` Fixes issue #548 --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

OVERLORD added the pull-request label 2025-10-09 19:09:28 +03:00

OVERLORD closed this issue 2025-10-09 19:09:30 +03:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

gh-pages

planka-1.1.1

planka-1.1.0

planka-1.0.5

planka-1.0.4

v2.0.0-rc.4

v1.26.3

planka-0.2.26

planka-1.0.3

planka-1.0.2

v2.0.0-rc.3

planka-1.0.1

v2.0.0-rc.2

planka-1.0.0

planka-0.2.25

v1.26.2

planka-0.2.24

v1.26.1

planka-0.2.23

v1.26.0

planka-0.2.22

v1.25.1

v1.25.0

planka-0.2.21

v1.24.4

planka-0.2.20

v1.24.3

planka-0.2.19

planka-0.2.18

v1.24.2

planka-0.2.17

planka-0.2.16

v1.24.1

planka-0.2.15

v1.24.0

planka-0.2.14

v1.23.5

v1.23.4

planka-0.2.13

planka-0.2.12

v1.23.3

planka-0.2.11

v1.23.2

planka-0.2.10

v1.23.1

planka-0.2.9

v1.23.0

v1.22.0

planka-0.2.8

Labels

Clear labels

bug

bug

documentation

duplicate

enhancement

good first issue

help wanted

pull-request

Mirrored from GitHub Pull Request

question

wontfix

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/planka#1132