Forte/launchpad
6
0
Fork 0
Code Issues Pull Requests Actions Packages Wiki Activity

sso vw

Browse Source
This commit is contained in:
Danijel Simeunovic
2026-05-16 21:47:59 +02:00
parent fda90f9e01
commit 117297effc
4 changed files with 38 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docs/REFERENCE.md
View File

@@ -1097,6 +1097,8 @@ storage:
**TLS**: cert-manager auto-provisions Let's Encrypt certificate via `letsencrypt-prod` ClusterIssuer (same pattern as Gitea, Grafana, etc).
**SSO**: Keycloak OIDC via `forte` realm (client ID: `vaultwarden`). Self-service client config Secret (`keycloak-client-vaultwarden`) triggers registrar to create KC client and sync credentials to `vaultwarden-oidc-credentials`. PKCE enabled.
**Endpoints**:
- Web UI: `https://bitwarden.forteapps.net`
@@ -1104,6 +1106,7 @@ storage:
**Secrets**:
- `prod-db-creds` (SealedSecret) — PostgreSQL credentials (`pgusername`, `pgpassword`) + SMTP credentials
- `vaultwarden-oidc-credentials` (registrar-managed) — OIDC client ID + secret
- `vaultwarden-tls` — auto-managed by cert-manager
### AI Code Review (ai-review)