Closed Bug 1521074 Opened 6 years ago Closed 6 years ago

Set up elmo webapp environment to make OIDC work against auth0

Categories

(Webtools Graveyard :: Elmo, enhancement)

Product:
Webtools Graveyard
Component:
Elmo
Type:
enhancement
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: Pike, Unassigned)

References

Details

This is three tasks, not sure if we wanna break them apart:

https://github.com/mozilla-services/cloudops-deployment/blob/master/projects/elmo/puppet/modules/elmo/templates/elmo_env_vars.erb needs hooks for

OIDC_OP_AUTHORIZATION_ENDPOINT = "https://auth.mozilla.auth0.com/authorize"
OIDC_OP_TOKEN_ENDPOINT = "https://auth.mozilla.auth0.com/oauth/token"
OIDC_OP_USER_ENDPOINT = "https://auth.mozilla.auth0.com/userinfo"
OIDC_RP_SIGN_ALGO = "RS256"
OIDC_OP_JWKS_ENDPOINT = "https://auth.mozilla.auth0.com/.well-known/jwks.json"
OIDC_RP_CLIENT_ID = <%= @oidc_client_id %>
OIDC_RP_CLIENT_SECRET = <%= @oidc_client_secret %>

and we need secrets for stage and prod, via https://mozilla.service-now.com/sp?id=sc_cat_item&sys_id=1e9746c20f76aa0087591d2be1050ecb&sysparm_category=af6e573e3cfa7100a6802c705c96d4c0. I can fill out those forms, who should I have them be sent to?

We fixed this in puppet, and the secrets were also done.

Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Product: Webtools → Webtools Graveyard
You need to log in before you can comment on or make changes to this bug.