Zum Hauptinhalt springen

Auth

The OpenTalk Controller uses keycloak, an OpenID Connect compatible identity and access management software for single sign-on.

Note: The controller expects the Recorder client to be setup as service account with the service account role opentalk-recorder.

Configuration

The section in the configuration file is called auth.

FieldTypeRequiredDefault valueDescription
issuerstringyes-The issuer url from keycloak
client_idstringyes-The unique identifier for the OpenTalk client
client_secretstringyes-The secret corresponding to the specified client ID

Example

[auth]
issuer = "http://localhost:8080/auth/realms/MyRealm"
client_id = "Recorder"
client_secret = "INSERT_KEY"