ca23b065b2
Corrects errors from `mc-conf` references not noticed until after merging #1028 . No issue to track it.
4.2 KiB
MinIO Identity Management Plugin Settings
minio
Table of Contents
This page documents settings for enabling external identity
management using the MinIO Identity Management Plugin. See minio-external-identity-management-plugin for a
tutorial on using these settings.
Examples
When setting up the MinIO Identity Management Plugin, you must define at a minimum all of the required settings. The examples here represent the minimum required settings.
Environment Variables
MINIO_IDENTITY_PLUGIN_URL="https://authservice.example.net:8080/auth"
MINIO_IDENTITY_PLUGIN_ROLE_POLICY="ConsoleUser"Configuration Settings
identity_plugin
Use mc admin config set to create or update the OpenID
configuration. The identity_plugin url argument is
required. Specify additional optional arguments as a whitespace ("
")-delimited list.
mc admin config set identity_plugin \
url="https://external-auth.example.net:8080/auth" \
role_policy="consoleAdmin" \
[ARGUMENT=VALUE] ... Settings
URL
Required
Environment Variable
MINIO_IDENTITY_PLUGIN_URL
Configuration Setting
identity_plugin url
Role Policy
Required
Environment Variable
MINIO_IDENTITY_PLUGIN_ROLE_POLICY
Configuration Setting
identity_plugin role_policy
Enable
Optional
Environment Variable
This setting does not have an environment variable option.
Configuration Setting
identity_plugin enabled
Set to false to disable the identity provider
configuration.
Applications cannot generate STS credentials or otherwise
authenticate to MinIO using the configured provider if set to
false.
Defaults to true or "enabled".
Token
Optional
Environment Variable
MINIO_IDENTITY_PLUGIN_TOKEN
Configuration Setting
identity_plugin token
Role ID
Optional
Environment Variable
MINIO_IDENTITY_PLUGIN_ROLE_ID
Configuration Setting
identity_plugin role_id
Comment
Optional
Environment Variable
MINIO_IDENTITY_PLUGIN_COMMENT
Configuration Setting
identity_plugin comment