Set cluster OIDC

Prev Next

Available in VPC

OpenID Connect (OIDC) is a feature that allows you to easily implement user authentication across multiple platforms that accept OpenID authentication using a single OpenID.
Add the OIDC authentication feature to a cluster by setting up an OIDC provider.

Requests

The following describes the request format for the endpoint. The request format is as follows.

Method URI
PATCH /vnks/v2/clusters/{uuid}/oidc (Korea Region)
PATCH /vnks/sgn-v2/clusters/{uuid}/oidc (Singapore Region)
PATCH /vnks/jpn-v2/clusters/{uuid}/oidc (Japan Region)

Request headers

For information about the headers common to all Ncloud Kubernetes Service APIs, see Ncloud Kubernetes Service request headers.

Request path parameters

You can use the following path parameters with your request:

Field Type Required Description
uuid String Required Cluster's UUID

Request syntax

The request syntax is as follows.

{
    "clientId": "String",
    "issuserURL": "String",
    "status": "Boolean",
    "groupsClaim": "String",
    "groupsPrefix": "String",
    "usernameClaim": "String",
    "usernamePrefix": "String",
    "requiredClaim": "String"
}

Request body

The following describes the request body.

Field Type Required Description
status Boolean Required Whether OIDC authentication is enabled
  • true | false
clientId String Required Client ID of the OIDC provider
issuerURL String Required URL of the OIDC provider
groupsClaim String Optional JWT Claim to use as the user's groups
groupsPrefix String Optional Prefix to add before groupsClaim
  • Use to avoid conflicts with existing groups
usernameClaim String Optional Claim to use as the user's username
usernamePrefix String Optional Prefix to add before usernameClaim
  • Use to avoid conflicts with existing usernames
requiredClaim String Optional Key=value pairs that specify a required claim in the ID token

Request example

The following is a sample request.

curl --location --request PATCH 'https://nks.apigw.ntruss.com/vnks/v2/clusters/0000a20e-e0fb-4dc9-af1b-97fd3f8d0000/oidc' \
--header 'x-ncp-apigw-timestamp: {Timestamp}' \
--header 'x-ncp-iam-access-key: {Sub Account Access Key}' \
--header 'x-ncp-apigw-signature-v2: {API Gateway Signature}' \
--data '{
    "clientId": "String",
    "issuerURL": "String",
    "status": "true",
    "groupsClaim": "String",
    "groupsPrefix": "String",
    "usernameClaim": "String",
    "usernamePrefix": "String",
    "requiredClaim": "String"
}'

Responses

The following describes the response format.

Response body

The following describes the response body.

Field Type Required Description
uuid String - UUID of the cluster

Response status codes

For information about the HTTP status codes common to all Ncloud Kubernetes Service APIs, see Ncloud Kubernetes Service response status codes.

Response example

The following is a sample response.

{
    "uuid": "0000a20e-e0fb-4dc9-af1b-97fd3f8d0000"
}
Business Registration Number: 129-86-31394 E-commerce Permit Number:No. 2009-GyeonggiSeongnam-0510
CEO: Kim Yuwon Address: NAVER Green Factory 17th–26th Floors, Buljeong-ro 6, Bundang-gu, Seongnam-si, Gyeonggi-do 13561, Republic of Korea. Customer Support Number: 1544-5876
© NAVER Cloud Corp. All Rights Reserved.