kevin/baron-sso
1
0
Fork 0
forked from baron/baron-sso
Code Pull Requests Activity

fc

Browse Source
This commit is contained in:
ai-cell-a100-1
2026-04-20 16:47:50 +09:00
parent 44a853408e
commit 7ecb19e397
16 changed files with 11728 additions and 89 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
docker/ory/hydra/hydra.yml
View File

@@ -83,10 +83,10 @@ serve:
urls:
self:
issuer: http://127.0.0.1:4444
consent: http://127.0.0.1:3000/consent
login: http://127.0.0.1:3000/login
logout: http://127.0.0.1:3000/logout
issuer: ${URLS_SELF_ISSUER}
consent: ${URLS_CONSENT}
login: ${URLS_LOGIN}
logout: ${URLS_LOGOUT}
device:
verification: http://127.0.0.1:3000/device/verify
success: http://127.0.0.1:3000/device/success

45
docker/ory/kratos/kratos.yml
View File

@@ -8,17 +8,7 @@ serve:
cors:
enabled: true
allowed_origins:
- http://localhost:5173
- http://localhost:5174
- http://localhost:5175
- http://localhost:5000
- http://backend:3000
- http://baron_backend:3000
- https://ssologin.hmac.kr
- https://sso-test.hmac.kr
- https://app.brsw.kr
- https://sss.hmac.kr
- https://sso.hmac.kr
- http://backend:23000
admin:
base_url: http://localhost:4434/
@@ -29,11 +19,11 @@ session:
path: /
selfservice:
default_browser_return_url: http://localhost:5000/
default_browser_return_url: http://localhost:25000/
allowed_return_urls:
- http://baron_backend:3000
- http://baron_backend:3000/
- http://localhost:5000
- http://backend:23000
- http://backend:23000/
- http://localhost:25000
- https://app.brsw.kr
- https://app.brsw.kr/
- https://sss.hmac.kr
@@ -44,6 +34,15 @@ selfservice:
- https://ssologin.hmac.kr/
- https://sso-test.hmac.kr
- https://sso-test.hmac.kr/
- https://ssob.hmac.kr
- https://ssob.hmac.kr/
- https://ssob.hmac.kr/ko
- https://ssob.hmac.kr/ko/
- https://ssob.hmac.kr/en
- https://ssob.hmac.kr/en/
- https://ssob.hmac.kr/auth/callback
- https://ssob.hmac.kr/ko/auth/callback
- https://ssob.hmac.kr/en/auth/callback
methods:
password:
@@ -56,24 +55,24 @@ selfservice:
flows:
error:
ui_url: http://localhost:5000/error
ui_url: http://localhost:25000/error
settings:
ui_url: http://localhost:5000/error?error=settings_disabled
ui_url: http://localhost:25000/error?error=settings_disabled
privileged_session_max_age: 15m
recovery:
ui_url: http://localhost:5000/recovery
ui_url: http://localhost:25000/recovery
use: code
verification:
ui_url: http://localhost:5000/verification
ui_url: http://localhost:25000/verification
use: code
logout:
after:
default_browser_return_url: http://localhost:5000/login
default_browser_return_url: http://localhost:25000/login
login:
ui_url: http://localhost:5000/login
ui_url: http://localhost:25000/login
lifespan: 10m
registration:
ui_url: http://localhost:5000/registration
ui_url: http://localhost:25000/registration
lifespan: 10m
log:
@@ -106,7 +105,7 @@ courier:
delivery_strategy: http
http:
request_config:
url: http://baron_backend:3000/api/v1/auth/webhooks/kratos-courier
url: http://backend:23000/api/v1/auth/webhooks/kratos-courier
method: POST
body: file:///etc/config/kratos/courier-http.jsonnet
headers:

10
docker/ory/oathkeeper/rules.active.json
View File

@@ -7,7 +7,7 @@
"methods": ["GET"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "noop" }],
"authorizer": { "handler": "allow" },
@@ -21,7 +21,7 @@
"methods": ["OPTIONS"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "noop" }],
"authorizer": { "handler": "allow" },
@@ -35,7 +35,7 @@
"methods": ["GET", "POST", "OPTIONS"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "noop" }],
"authorizer": { "handler": "allow" },
@@ -49,7 +49,7 @@
"methods": ["POST", "PUT", "PATCH", "DELETE"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "cookie_session" }],
"authorizer": { "handler": "remote_json" },
@@ -63,7 +63,7 @@
"methods": ["GET"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "cookie_session" }],
"authorizer": { "handler": "remote_json" },

10
docker/ory/oathkeeper/rules.json
View File

@@ -7,7 +7,7 @@
"methods": ["GET"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "noop" }],
"authorizer": { "handler": "allow" },
@@ -21,7 +21,7 @@
"methods": ["OPTIONS"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "noop" }],
"authorizer": { "handler": "allow" },
@@ -35,7 +35,7 @@
"methods": ["GET", "POST", "OPTIONS"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "noop" }],
"authorizer": { "handler": "allow" },
@@ -49,7 +49,7 @@
"methods": ["POST", "PUT", "PATCH", "DELETE"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "cookie_session" }],
"authorizer": { "handler": "remote_json" },
@@ -63,7 +63,7 @@
"methods": ["GET"]
},
"upstream": {
"url": "http://baron_backend:3000"
"url": "http://backend:23000"
},
"authenticators": [{ "handler": "cookie_session" }],
"authorizer": { "handler": "remote_json" },