Login
      Contents x
      Set cluster OIDC
        • Print
        • PDF
        Contents

        Set cluster OIDC

          • Print
          • PDF
          Article summary

          Available in VPC

          OpenID Connect (OIDC) is a feature that allows you to easily implement user authentication across multiple platforms that accept OpenID authentication using a single OpenID.
          Add the OIDC authentication feature to a cluster by setting up an OIDC provider.

          Requests

          The following describes the request format for the endpoint. The request format is as follows.

          MethodURI
          PATCH/clusters/{uuid}/oidc

          Request headers

          For headers common to all Ncloud Kubernetes Service APIs, see Ncloud Kubernetes Service common request headers.

          Request path parameters

          The following describes the parameters.

          FieldTypeRequiredDescription
          uuidStringRequiredCluster's UUID

          Request syntax

          The request syntax is as follows.

          {
    "clientId": "String",
    "issuserURL": "String",
    "status": "Boolean",
    "groupsClaim": "String",
    "groupsPrefix": "String",
    "usernameClaim": "String",
    "usernamePrefix": "String",
    "requiredClaim": "String"
}

          Request body

          The following describes the request body.

          FieldTypeRequiredDescription
          statusBooleanRequiredWhether OIDC authentication is enabled
          • true | false
          clientIdStringRequiredClient ID of the OIDC provider
          issuserURLStringRequiredURL of the OIDC provider
          groupsClaimStringOptionalJWT Claim to use as the user's groups
          groupsPrefixStringOptionalPrefix to add before groupsClaim
          • Use to avoid conflicts with existing groups
          usernameClaimStringOptionalClaim to use as the user's username
          usernamePrefixStringOptionalPrefix to add before usernameClaim
          • Use to avoid conflicts with existing usernames
          requiredClaimStringOptionalKey=value pairs that specify a required claim in the ID token

          Request example

          The following is a sample request.

          curl --location --request PATCH 'https://nks.apigw.ntruss.com/vnks/v2/clusters/0000a20e-e0fb-4dc9-af1b-97fd3f8d0000/oidc' \
--header 'x-ncp-apigw-timestamp: {Timestamp}' \
--header 'x-ncp-iam-access-key: {Sub Account Access Key}' \
--header 'x-ncp-apigw-signature-v2: {API Gateway Signature}' \
--data '{
    "clientId": "String",
    "issuerURL": "String",
    "status": "true",
    "groupsClaim": "String",
    "groupsPrefix": "String",
    "usernameClaim": "String",
    "usernamePrefix": "String",
    "requiredClaim": "String"
}'

          Responses

          The following describes the response format.

          Response body

          The following describes the response body.

          FieldTypeRequiredDescription
          uuidString-UUID of the cluster

          Response status codes

          For response status codes common to all Ncloud Kubernetes Service APIs, see Ncloud Kubernetes Service response status codes.

          Response example

          The following is a sample response.

          {
    "uuid": "0000a20e-e0fb-4dc9-af1b-97fd3f8d0000"
}
          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout