Skip to content

Commit aa2f0d2

Browse files
ewelinagrewelinagr
committed
fix: change kratos selfservice config and flows setup
1 parent c2655d9 commit aa2f0d2

File tree

1 file changed

+46
-31
lines changed

1 file changed

+46
-31
lines changed

charts/radar-kratos/values.yaml

Lines changed: 46 additions & 31 deletions
Original file line numberDiff line numberDiff line change
@@ -244,61 +244,76 @@ kratos:
244244
issuer: Radar
245245
enabled: true
246246
link:
247+
config:
248+
lifespan: 1h
249+
enabled: true
250+
code:
251+
config:
252+
lifespan: 1h
247253
enabled: true
248254

249255
flows:
250256
error:
251257
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/error'
252258

253259
settings:
254-
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/settings'
260+
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/account/settings'
255261
required_aal: highest_available
256262

257263
recovery:
258264
enabled: true
259-
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/recovery'
265+
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/auth/recovery'
260266
use: link
267+
after:
268+
default_browser_return_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/auth/login'
269+
# hooks: # TODO this breaks the ui flow!!!
270+
# - hook: web_hook
271+
# config:
272+
# method: POST
273+
# url: http://management-portal:8080/managementportal/api/kratos/subjects/activate
274+
# body: base64://ZnVuY3Rpb24oY3R4KSB7CiAgICBpZGVudGl0eTogaWYgc3RkLm9iamVjdEhhcyhjdHgsICJpZGVudGl0eSIpIHRoZW4gY3R4LmlkZW50aXR5IGVsc2UgbnVsbCwKICAgIHBheWxvYWQ6IGlmIHN0ZC5vYmplY3RIYXMoY3R4LCAiZmxvdyIpICYmIHN0ZC5vYmplY3RIYXMoY3R4LmZsb3csICJ0cmFuc2llbnRfcGF5bG9hZCIpIHRoZW4gY3R4LmZsb3cudHJhbnNpZW50X3BheWxvYWQgZWxzZSBudWxsLAogICAgY29va2llczogY3R4LnJlcXVlc3RfY29va2llcwp9Cg==
275+
# response:
276+
# ignore: false
261277

262278
verification:
263279
# our current flow necessitates that users reset their password after they activate an account in managementportal,
264280
# this works as verification
265-
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/verification'
266-
enabled: false
281+
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/auth/verification'
282+
enabled: true
267283
use: code
268-
after:
269-
default_browser_return_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui'
270-
hooks:
271-
- hook: web_hook
272-
config:
273-
method: POST
274-
url: http://management-portal:8080/managementportal/api/kratos/subjects/activate
275-
body: base64://ZnVuY3Rpb24oY3R4KSB7CiAgICBpZGVudGl0eTogaWYgc3RkLm9iamVjdEhhcyhjdHgsICJpZGVudGl0eSIpIHRoZW4gY3R4LmlkZW50aXR5IGVsc2UgbnVsbCwKICAgIHBheWxvYWQ6IGlmIHN0ZC5vYmplY3RIYXMoY3R4LCAiZmxvdyIpICYmIHN0ZC5vYmplY3RIYXMoY3R4LmZsb3csICJ0cmFuc2llbnRfcGF5bG9hZCIpIHRoZW4gY3R4LmZsb3cudHJhbnNpZW50X3BheWxvYWQgZWxzZSBudWxsLAogICAgY29va2llczogY3R4LnJlcXVlc3RfY29va2llcwp9Cg==
276-
response:
277-
ignore: true
284+
# after: # TODO this breaks the ui flow!!!
285+
# hooks:
286+
# - hook: web_hook
287+
# config:
288+
# method: POST
289+
# url: http://management-portal:8080/managementportal/api/kratos/subjects/activate
290+
# body: base64://ZnVuY3Rpb24oY3R4KSB7CiAgICBpZGVudGl0eTogaWYgc3RkLm9iamVjdEhhcyhjdHgsICJpZGVudGl0eSIpIHRoZW4gY3R4LmlkZW50aXR5IGVsc2UgbnVsbCwKICAgIHBheWxvYWQ6IGlmIHN0ZC5vYmplY3RIYXMoY3R4LCAiZmxvdyIpICYmIHN0ZC5vYmplY3RIYXMoY3R4LmZsb3csICJ0cmFuc2llbnRfcGF5bG9hZCIpIHRoZW4gY3R4LmZsb3cudHJhbnNpZW50X3BheWxvYWQgZWxzZSBudWxsLAogICAgY29va2llczogY3R4LnJlcXVlc3RfY29va2llcwp9Cg==
291+
# response:
292+
# ignore: true
278293

279294
logout:
280295
after:
281-
default_browser_return_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/login'
296+
default_browser_return_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/auth/login'
282297

283298
login:
284-
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/login'
299+
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/auth/login'
285300

286301
registration:
287-
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/registration'
288-
after:
289-
password:
290-
hooks:
291-
- hook: web_hook
292-
config:
293-
method: POST
294-
url: http://management-portal:8080/managementportal/api/kratos/subjects
295-
body: base64://ZnVuY3Rpb24oY3R4KSB7CiAgICBpZGVudGl0eTogaWYgc3RkLm9iamVjdEhhcyhjdHgsICJpZGVudGl0eSIpIHRoZW4gY3R4LmlkZW50aXR5IGVsc2UgbnVsbCwKICAgIHBheWxvYWQ6IGlmIHN0ZC5vYmplY3RIYXMoY3R4LCAiZmxvdyIpICYmIHN0ZC5vYmplY3RIYXMoY3R4LmZsb3csICJ0cmFuc2llbnRfcGF5bG9hZCIpIHRoZW4gY3R4LmZsb3cudHJhbnNpZW50X3BheWxvYWQgZWxzZSBudWxsLAogICAgY29va2llczogY3R4LnJlcXVlc3RfY29va2llcwp9Cg==
296-
response:
297-
ignore: true
298-
- hook: session
299-
oidc:
300-
hooks:
301-
- hook: session
302+
ui_url: '{{ .Values.advertised_protocol }}://{{ .Values.server_name }}/kratos-ui/auth/registration'
303+
# after: # TODO this breaks the ui flow!!!
304+
# password:
305+
# hooks:
306+
# - hook: web_hook
307+
# config:
308+
# method: POST
309+
# url: http://management-portal:8080/managementportal/api/kratos/subjects
310+
# body: base64://ZnVuY3Rpb24oY3R4KSB7CiAgICBpZGVudGl0eTogaWYgc3RkLm9iamVjdEhhcyhjdHgsICJpZGVudGl0eSIpIHRoZW4gY3R4LmlkZW50aXR5IGVsc2UgbnVsbCwKICAgIHBheWxvYWQ6IGlmIHN0ZC5vYmplY3RIYXMoY3R4LCAiZmxvdyIpICYmIHN0ZC5vYmplY3RIYXMoY3R4LmZsb3csICJ0cmFuc2llbnRfcGF5bG9hZCIpIHRoZW4gY3R4LmZsb3cudHJhbnNpZW50X3BheWxvYWQgZWxzZSBudWxsLAogICAgY29va2llczogY3R4LnJlcXVlc3RfY29va2llcwp9Cg==
311+
# response:
312+
# ignore: true
313+
# - hook: session
314+
# oidc:
315+
# hooks:
316+
# - hook: session
302317

303318
identity:
304319
default_schema_id: subject

0 commit comments

Comments
 (0)