Hello everyone. I'm trying to set up Kratos in Kub...
# talk-kratosr
rapid-energy-67512
01/08/2024, 8:48 PMHello everyone. I'm trying to set up Kratos in Kubernetes and I want to use "Passwordless authentication with one-time code". According to the docs here, I should set:
Copy code
code: {
identifier: true,
via: "email",
}, Copy code
The configuration contains values or keys which are invalid:
properties.traits.properties.email.ory\.sh/kratos.credentials: map[code:map[identifier:true via:email] password:map[identifier:true]]
^-- additionalProperties "code" not allowedoryd/kratos:v1.0.0rapid-energy-67512
01/08/2024, 8:52 PMHere's my whole values.yml (Terraform file template):
Copy code
kratos:
config:
dsn: ${dsn}
serve:
public:
base_url: <https://kratos>.${fqdn}/
cors:
enabled: true
admin:
base_url: <http://kratos:4434/>
selfservice:
default_browser_return_url: <https://kratosui>.${fqdn}/
allowed_return_urls:
- <https://kratosui>.${fqdn}/
- <http://localhost:59999/web/auth.html>
methods:
password:
enabled: true
code:
enabled: true
flows:
error:
ui_url: <https://kratosui>.${fqdn}/error
settings:
ui_url: <https://kratosui>.${fqdn}/settings
privileged_session_max_age: 15m
recovery:
enabled: true
ui_url: <https://kratosui>.${fqdn}/recovery
verification:
enabled: true
ui_url: <https://kratosui>.${fqdn}/verification
after:
default_browser_return_url: <https://kratosui>.${fqdn}/
logout:
after:
default_browser_return_url: <https://kratosui>.${fqdn}/login
login:
ui_url: <https://kratosui>.${fqdn}/login
lifespan: 10m
registration:
lifespan: 10m
ui_url: <https://kratosui>.${fqdn}/registration
after:
password:
hooks:
- hook: session
log:
level: debug
format: text
leak_sensitive_values: true
secrets:
cookie:
- "${kratos_secrets_cookie}"
cipher:
- "${kratos_secrets_cipher}"
ciphers:
algorithm: xchacha20-poly1305
hashers:
algorithm: bcrypt
bcrypt:
cost: 8
identity:
default_schema_id: "default"
schemas:
- id: default
url: file:///etc/config/identity.default.schema.json
courier:
template_override_path: /etc/config/templates
smtp:
connection_uri: "${kratos_smtp_connection_uri}"
from_name: "${kratos_smtp_from_name}"
from_address: "${kratos_smtp_from_address}"
cookies:
domain: "${fqdn}"
path: /
same_site: Lax
automigration:
enabled: true
identitySchemas:
"identity.default.schema.json": |
{
"$id": "<https://schemas.ory.sh/presets/kratos/identity.email.schema.json>",
"title": "Person",
"type": "object",
"properties": {
"traits": {
"type": "object",
"properties": {
"email": {
"type": "string",
"format": "email",
"title": "E-Mail",
"<http://ory.sh/kratos|ory.sh/kratos>": {
"credentials": {
"password": {
"identifier": true
},
"code": {
"identifier": true,
"via": "email"
}
},
"recovery": {
"via": "email"
},
"verification": {
"via": "email"
}
},
"maxLength": 320
}
},
"required": ["email"],
"additionalProperties": false
}
}
}r
refined-kangaroo-48640
01/08/2024, 10:12 PMThis feature is on master but not yet in a tagged Release. Coming soon ™️
b
billowy-mouse-4611
01/09/2024, 6:59 AM@refined-kangaroo-48640 Do you know when the new tagged version will be released, because the last one is from July ?
32 Views