How to configure SSO for temporal in helm chart

Temporal SSO for temporal-web external access

Hi @santhoshrajs, is this a question? I see you have other SSO questions raised in different threads. Can this one be considered closed?

Hi tihomir both same question only tihomir , the config.yaml which I added is not working can u help me

image

This the config.yaml which I added via helm chart

I see that you used the sample code for this from GitHub - temporalio/web: Temporal Web UI - is everything set up correctly on your end as far as Oauth Providers goes?

@santhoshrajs could you elaborate on what is not working

Does Sign In button appear on Web UI? Does it navigate you to your oidc provider page? Any logs from the Web server?

@tihomir @Ruslan

This is issue which am facing when I try to sign in

@tihomir I have configured as like this only I used the

Google OpenID Connect  |  Google Identity  |  Google Developers

@santhoshrajs does the WebUI transfer you to the login page automatically or you navigate to it manually?

Have you also tried starting up WebUI locally and verifying the auth config?

Actually I navigated manually by entering the dns/sign-in.

And I have not tested locally.

Seems like the config was not read

Could you double check how you pass your config to the web pod and ensure it’s read

Lmk how it goes

hi @Ruslan i have checked our configs also its valid but I don’t understand why it not taking.

here is our helm structure

This is the helm chart which i used

additionally i have added the server/config.yaml in this helm chart and deployed

i would look into running the Web locally first to make sure the config is passed properly this way and then check using Helm

Have you tried running the Web locally? Here is a command just in case Temporal Web Custom Config with Oauth fails - #4 by Ruslan (or in the readme GitHub - temporalio/web: Temporal Web UI)

As for helm charts specifically, i will ask our cloud team after verifying with you that the Web runs properly locally

hi ,
@Ruslan we tested the sso locally its working actually but we need that to be deployed via helm so can u please help us


@benjamin_brightson kinldy follow up

how do you pass web config using helm? seems like there is helm misconfiguration?

@ruslan here GitHub - temporalio/web: Temporal Web UI we have the config for local setup and i searched but cant find the helm chart supporting files for web config.
Can u please point me to the web config for using helm

@Harshwardhan_Kakra follow up