From fb7d45abc414c7b02e529b4b9e586dd986196d7b Mon Sep 17 00:00:00 2001 From: Vincent Ambo Date: Mon, 27 Dec 2021 17:33:37 +0300 Subject: feat(ops/keycloak): Import Gerrit OIDC client This was previously configured in the UI. Change-Id: Ib15b8ecca96d7814dc85d62199865b22bdb63f95 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4710 Tested-by: BuildkiteCI Reviewed-by: grfn --- ops/keycloak/main.tf | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) diff --git a/ops/keycloak/main.tf b/ops/keycloak/main.tf index f7dc0f27d132..90f3ca361036 100644 --- a/ops/keycloak/main.tf +++ b/ops/keycloak/main.tf @@ -85,3 +85,24 @@ resource "keycloak_openid_client" "grafana" { "https://status.tvl.su/*", ] } + +resource "keycloak_openid_client" "gerrit" { + realm_id = keycloak_realm.tvl.id + client_id = "gerrit" + name = "TVL Gerrit" + enabled = true + access_type = "CONFIDENTIAL" + standard_flow_enabled = true + base_url = "https://cl.tvl.fyi" + description = "TVL's code review tool" + direct_access_grants_enabled = true + exclude_session_state_from_auth_response = false + + valid_redirect_uris = [ + "https://cl.tvl.fyi/*", + ] + + web_origins = [ + "https://cl.tvl.fyi", + ] +} -- cgit 1.4.1