Check out what's in the latest release of Kabanero Learn More

Configuring Kabanero Console with OAuth

You can enable optional stack management features via the product console by configuring GitHub OAuth. This setup will allow the console to verify users via GitHub OAuth.

  1. The stack management features communicate with the CLI server. Therefore, configure the CLI service with authorization before you continue.

  2. From your GitHub organization page, create an OAuth Application in Settings → OAuth App → New OAuth Apps. Note: the OAuth GitHub app will need to be created in the same GitHub organization that you specified in the Kabanero CRD. If the OAuth GitHub app and the stack hub repository need to be in different GitHub orgs, then the OAuth GitHub app can request access to data in the org with the application stacks. For more information see the GitHub doc - OAuth App Access and Restrictions.

    • Application name can be anything, a suggestion is: kabanero console.

    • Homepage URL can be anything for now since the application doesn’t exist yet, you can come back and fill this in.

    • Application description is optional.

    • Authorization callback URL is https://<YOUR_HOST>/ibm/api/social-login/redirect/githubLogin

      • If you do not know the full product console application hostname, you can come back and fill this in later. You can find the product console URL from the Kubernetes console under Networking → Routes. The route is labeled as kabanero-landing.

  3. Finish creating the OAuth App by clicking the Register application button.

    • Note the generated Client ID and Client Secret as you will need both of these when creating the secret in the next step.

  4. In your Kubernetes console, in the kabanero project namespace, click Workloads → Secrets → Create and create a key/value secret.

    • Secret Name is: kabanero-github-oauth-secret

    • Add two key value pairs to the secret.

      • key: clientID and the value is your client ID from your GitHub OAuth App.

      • key: clientSecret and the value is your client secret from your GitHub OAuth App.

    • Click Create

  5. In your Kubernetes console, under the kabanero project namespace, delete the kabanero landing pod.

    • In Workloads → Pods, find the pod named kabanero-landing-xxxxx-xxxx and delete it.

  6. Navigate to the product console URL.

    • The URL is found in your Kubernetes console under Networking → Routes with the label kabanero-landing.

  7. Go to the Instance page and inside the stack hub tile you will now see a Manage application stacks button that will take you to the OAuth section of the console.

Edit This Page