Set cluster OIDC
    • PDF

    Set cluster OIDC

    • PDF

    Article summary

    Available in VPC

    OpenID Connect (OIDC) is a feature that allows you to easily implement user authentication across multiple platforms that accept OpenID authentication using a single OpenID.
    Add the OIDC authentication feature to a cluster by setting up an OIDC provider.

    Requests

    The following describes the request format for the endpoint. The request format is as follows.

    MethodURI
    PATCH/clusters/{uuid}/oidc

    Request headers

    For headers common to all Ncloud Kubernetes Service APIs, see Ncloud Kubernetes Service common request headers.

    Request path parameters

    The following describes the parameters.

    FieldTypeRequiredDescription
    uuidStringRequiredCluster's UUID

    Request syntax

    The request syntax is as follows.

    {
        "clientId": "String",
        "issuserURL": "String",
        "status": "Boolean",
        "groupsClaim": "String",
        "groupsPrefix": "String",
        "usernameClaim": "String",
        "usernamePrefix": "String",
        "requiredClaim": "String"
    }
    

    Request body

    The following describes the request body.

    FieldTypeRequiredDescription
    statusBooleanRequiredWhether OIDC authentication is enabled
    • true | false
    clientIdStringRequiredClient ID of the OIDC provider
    issuserURLStringRequiredURL of the OIDC provider
    groupsClaimStringOptionalJWT Claim to use as the user's groups
    groupsPrefixStringOptionalPrefix to add before groupsClaim
    • Use to avoid conflicts with existing groups
    usernameClaimStringOptionalClaim to use as the user's username
    usernamePrefixStringOptionalPrefix to add before usernameClaim
    • Use to avoid conflicts with existing usernames
    requiredClaimStringOptionalKey=value pairs that specify a required claim in the ID token

    Request example

    The following is a sample request.

    curl --location --request PATCH 'https://nks.apigw.ntruss.com/vnks/v2/clusters/0000a20e-e0fb-4dc9-af1b-97fd3f8d0000/oidc' \
    --header 'x-ncp-apigw-timestamp: {Timestamp}' \
    --header 'x-ncp-iam-access-key: {Sub Account Access Key}' \
    --header 'x-ncp-apigw-signature-v2: {API Gateway Signature}' \
    --data '{
        "clientId": "String",
        "issuerURL": "String",
        "status": "true",
        "groupsClaim": "String",
        "groupsPrefix": "String",
        "usernameClaim": "String",
        "usernamePrefix": "String",
        "requiredClaim": "String"
    }'
    

    Responses

    The following describes the response format.

    Response body

    The following describes the response body.

    FieldTypeRequiredDescription
    uuidString-UUID of the cluster

    Response status codes

    For response status codes common to all Ncloud Kubernetes Service APIs, see Ncloud Kubernetes Service response status codes.

    Response example

    The following is a sample response.

    {
        "uuid": "0000a20e-e0fb-4dc9-af1b-97fd3f8d0000"
    }
    

    Was this article helpful?

    Changing your password will log you out immediately. Use the new password to log back in.
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.