Skip to content

Commit 3b2725d

Browse files
roeizavidaroeizavida
authored
Support --google-group option (#97)
* Support `--google-group` option * Bump chart version to 6.2.3 * Bump chart version to 6.2.4 Co-authored-by: Roei Zavida <[email protected]>
1 parent 2513e41 commit 3b2725d

File tree

4 files changed

+11
-1
lines changed

4 files changed

+11
-1
lines changed

helm/oauth2-proxy/Chart.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
name: oauth2-proxy
2-
version: 6.2.3
2+
version: 6.2.4
33
apiVersion: v2
44
appVersion: 7.3.0
55
home: https://oauth2-proxy.github.io/oauth2-proxy/

helm/oauth2-proxy/README.md

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -112,6 +112,7 @@ Parameter | Description | Default
112112
`config.google.adminEmail` | user impersonated by the google service account | `""`
113113
`config.google.serviceAccountJson` | google service account json contents | `""`
114114
`config.google.existingConfig` | existing Kubernetes configmap to use for the service account file. See [google secret template](https://github.com/oauth2-proxy/manifests/blob/master/helm/oauth2-proxy/templates/google-secret.yaml) for the required values | `nil`
115+
`config.google.groups` | restrict logins to members of these google groups | `[]`
115116
`extraArgs` | key:value list of extra arguments to give the binary | `{}`
116117
`extraEnv` | key:value list of extra environment variables to give the binary | `[]`
117118
`extraVolumes` | list of extra volumes | `[]`

helm/oauth2-proxy/templates/deployment.yaml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -87,6 +87,11 @@ spec:
8787
- --google-admin-email={{ .adminEmail }}
8888
- --google-service-account-json=/google/service-account.json
8989
{{- end }}
90+
{{- if .groups }}
91+
{{- range $group := .groups }}
92+
- --google-group={{ $group }}
93+
{{- end }}
94+
{{- end }}
9095
{{- end }}
9196
{{- if .Values.htpasswdFile.enabled }}
9297
- --htpasswd-file=/etc/oauth2_proxy/htpasswd/users.txt

helm/oauth2-proxy/values.yaml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -26,6 +26,10 @@ config:
2626
# Alternatively, use an existing secret (see google-secret.yaml for required fields)
2727
# Example:
2828
# existingSecret: google-secret
29+
# groups: []
30+
# Example:
31+
# - [email protected]
32+
# - [email protected]
2933
# Default configuration, to be overridden
3034
configFile: |-
3135
email_domains = [ "*" ]

0 commit comments

Comments
 (0)