rauthy
OpenID Connect Single Sign-On Identity & Access Management
- Category: Apps
- Status: 0
- Image:
rauthy, 4, upstream - Healthcheck: No
- Backups: No
- Email: No
- Tests: No
- SSO: No
Quick start
abra app new rauthyabra app cmd --local <app> generate_enc_keysabra app secret generate <app> --allabra app deploy <app>abra app logs <app>- You'll see the automatically generated admin password in the initial logs.
Ensure that you reset this password after you log in. The
ADMIN_EMAILenv var controls the value of the admin login username.
- You'll see the automatically generated admin password in the initial logs.
Ensure that you reset this password after you log in. The
For more, see docs.coopcloud.tech.
Host mode networking
You'll want to enable this in your Traefik configuration to avoid getting
mistakenly rate limited based on internal ipv4 addresses (e.g. 10.0.0.6).
COMPOSE_FILE="$COMPOSE_FILE:compose.host.yml"
Encryption key rotation
This recipe supports encryption key rotation as described in the docs. To rotate keys the first time:
- Increment the version of
SECRET_ENC_KEYS_B_VERSION=b1tob2 abra app secret insert <app> enc_keys_b b2 "$(openssl rand -base64 32)"- Change
ENC_KEY_ACTIVE="a1"tob2(this tells rauthy to encrypt new secrets with the new key while still having access toa1) abra app deploy <app>
To rotate keys any future time, follow the same pattern of incrementing the non-active secret version and changing the active secret to that newly generated secret.