-
Notifications
You must be signed in to change notification settings - Fork 67
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
cloudbank: remove berkeley idp, let admin users be google users
Both berkeley and google has been configured as identity providers, where the berkeley idp was meant to provide access for admin users at berkeley and google idp was meant to provide access for admin users at 2i2c. Since the admin users of berkeley have google accounts as well, we can rely soley on the google idp instead to grant access to all admins.
- Loading branch information
1 parent
c4a0a1b
commit f2ea5f6
Showing
30 changed files
with
14 additions
and
106 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,9 +41,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - mail.ccsf.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| allowed_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -36,9 +36,6 @@ jupyterhub: | |
| allowed_domains: | ||
| - my.smccd.edu | ||
| - smccd.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -36,18 +36,15 @@ jupyterhub: | |
| CILogonOAuthenticator: | ||
| oauth_callback_url: https://csulb.cloudbank.2i2c.cloud/hub/oauth_callback | ||
| allowed_idps: | ||
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| allowed_domains: | ||
| - csulb.edu | ||
| https://its-shib.its.csulb.edu/idp/shibboleth: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| allow_all: true | ||
| urn:mace:incommon:berkeley.edu: | ||
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| allowed_domains: | ||
| - csulb.edu | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -42,15 +42,11 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| # allow_all is a partial authorization, username_pattern is enforced | ||
| # also to allow a subset of users, specifically *.edu suffixed | ||
| # domains in this case | ||
| # allow_all is a partial authorization for this hub because | ||
| # username_pattern configured and enforced also, allowing only users | ||
| # with *.edu suffixed domains besides specific admin users. | ||
| allow_all: true | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| # These folks should still have admin tho | ||
| admin_users: | ||
| - [email protected] | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -40,9 +40,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - elcamino.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -47,9 +47,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -37,9 +37,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -36,9 +36,6 @@ jupyterhub: | |
| allowed_domains: | ||
| - glendale.edu | ||
| - student.glendale.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -39,20 +39,16 @@ jupyterhub: | |
| CILogonOAuthenticator: | ||
| oauth_callback_url: https://humboldt.cloudbank.2i2c.cloud/hub/oauth_callback | ||
| allowed_idps: | ||
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| allowed_domains: | ||
| - humboldt.edu | ||
| https://sso.humboldt.edu/idp/metadata: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| allow_all: true | ||
| urn:mace:incommon:berkeley.edu: | ||
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| allowed_domains: | ||
| - humboldt.edu | ||
| Authenticator: | ||
| # These folks should still have admin tho | ||
| admin_users: | ||
| - [email protected] | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -39,9 +39,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -35,9 +35,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - mills.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -42,9 +42,6 @@ jupyterhub: | |
| allowed_domains: | ||
| - missioncollege.edu | ||
| - mywvm.wvm.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -39,9 +39,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,9 +41,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - go.pasadena.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -42,9 +42,6 @@ jupyterhub: | |
| allowed_domains: | ||
| - scc.losrios.edu | ||
| - apps.losrios.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,9 +41,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - saddleback.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -46,9 +46,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,9 +41,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -46,9 +46,6 @@ jupyterhub: | |
| http://google.com/accounts/o8/id: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,9 +41,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - my.smccd.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,9 +41,6 @@ jupyterhub: | |
| username_claim: "email" | ||
| allowed_domains: | ||
| - santarosa.edu | ||
| urn:mace:incommon:berkeley.edu: | ||
| username_derivation: | ||
| username_claim: "email" | ||
| Authenticator: | ||
| admin_users: | ||
| - [email protected] | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters