wiliiwin 检查一下配置文件缩进是否正确,最外层还有一个内置 ldap 的配置不要漏了
apiVersion: v1
data:
kubesphere.yaml: |
authentication:
authenticateRateLimiterMaxTries: 10
authenticateRateLimiterDuration: 10m0s
loginHistoryRetentionPeriod: 168h
maximumClockSkew: 10s
multipleLogin: False
kubectlImage: kubesphere/kubectl:v1.0.0
jwtSecret: "6XLS7txutm7UHoNdzPa0k2HgQLL6XaIa"
oauthOptions:
identityProviders:
- name: ldap
mappingMethod: 'auto'
type: 'LDAPIdentityProvider'
provider:
host: 'ad8b0a727735.sn.mynetname.net:389'
loginAttribute: 'uid'
mailAttribute: 'mail'
managerDN: 'uid=root,cn=users,dc=ad8b0a727735,dc=sn,dc=mynetname,dc=net'
managerPassword: 'xxxxxx'
userSearchBase: 'cn=users,dc=ad8b0a727735,dc=sn,dc=mynetname,dc=net'
- name: github
type: GitHubIdentityProvider
mappingMethod: auto
provider:
clientID: 'de6ff7bed0304e487b6e'
clientSecret: '70dd0725939f5e27668bedbe00da6959150eb2ac'
endpoint:
authURL: 'https://github.com/login/oauth/authorize'
tokenURL: 'https://github.com/login/oauth/access_token'
redirectURL: 'http://xxxxxxx:30880/oauth/redirect/github'
ldap:
host: openldap.kubesphere-system.svc:389
managerDN: cn=admin,dc=kubesphere,dc=io
managerPassword: admin
userSearchBase: ou=Users,dc=kubesphere,dc=io
groupSearchBase: ou=Groups,dc=kubesphere,dc=io
redis:
host: redis.kubesphere-system.svc
port: 6379
password: ""
db: 0
monitoring:
endpoint: http://prometheus-operated.kubesphere-monitoring-system.svc:9090
multicluster:
enable: false
kind: ConfigMap
metadata:
name: kubesphere-config
namespace: kubesphere-system
