Identity Provider Client Secret (per route)
Summary
When set, Identity Provider Client Secret (per route) overrides the value of idp_client_secret set globally for this route.
How to configure
- Core
- Enterprise
- Kubernetes
- Enterprise via Terraform
| YAML/JSON setting | Type | Usage |
|---|---|---|
idp_client_secret | string | optional |
Examples
routes:
- from: https://verify.localhost.pomerium.io
to: http://verify:8000
idp_client_secret: idp_client_secret
Set Identity Provider Client Secret (per route) in the Console:
The idp_client_secret can be set via a reference to a secret with a client_secret key:
| Annotation name | Type | Usage |
|---|---|---|
identity_provider_secret | name of a Kubernetes secret | optional |
ingress.pomerium.io/identity_provider_secret: idp-secret
apiVersion: v1
kind: Secret
metadata:
name: idp-secret
data:
client_secret: ...
| Parameter name | Type | Usage |
|---|---|---|
idp_client_secret | String | optional |
Examples
resource "pomerium_route" "verify_route" {
name = "verify-route"
namespace_id = pomerium_namespace.test_namespace.id
from = "https://verify.localhost.pomerium.io"
to = ["https://verify.pomerium.com"]
idp_client_secret = idp_client_secret
}