Hey all,
I'm having some difficulties in deployin...
# ory-selfhostingf
full-window-155
06/14/2022, 11:55 AMHey all,
I'm having some difficulties in deploying Kratos via helm and I wanted to check if my values make sense
Copy code
ingress:
admin:
hosts:
- host: <http://kratos-admin.staging.example.com|kratos-admin.staging.example.com>
paths:
- path: /
pathType: ImplementationSpecific
public:
hosts:
- host: <http://kratos-public.staging.example.com|kratos-public.staging.example.com>
paths:
- path: /
pathType: ImplementationSpecific
kratos:
autoMigrate: true
identitySchemas:
identitySchemas: '{
"id": "prescriber",
"url": "<base64://ewogICIkaWQiOiAicHJlc2NyaWJlci1pZGVudGl0eS5zY2hlbWEuanNvbiIsCiA>gIiRzY2hlbWEiOiAiaHR0cDovL2pzb24tc2NoZW1hLm9yZy9kcmFmdC0wNy9zY2hlbWEjIiwKICAidGl0bGUiOiAiUHJlc2NyaWJlciIsCiAgInR5cGUiOiAib2JqZWN0IiwKICAicHJvcGVydGllcyI6IHsKICAgICJ0cmFpdHMiOiB7CiAgICAgICJ0eXBlIjogIm9iamVjdCIsCiAgICAgICJwcm9wZXJ0aWVzIjogewogICAgICAgICJlbWFpbCI6IHsKICAgICAgICAgICJ0eXBlIjogInN0cmluZyIsCiAgICAgICAgICAiZm9ybWF0IjogImVtYWlsIiwKICAgICAgICAgICJ0aXRsZSI6ICJFLU1haWwiLAogICAgICAgICAgIm1pbkxlbmd0aCI6IDMsCiAgICAgICAgICAib3J5LnNoL2tyYXRvcyI6IHsKICAgICAgICAgICAgImNyZWRlbnRpYWxzIjogewogICAgICAgICAgICAgICJwYXNzd29yZCI6IHsKICAgICAgICAgICAgICAgICJpZGVudGlmaWVyIjogdHJ1ZQogICAgICAgICAgICAgIH0KICAgICAgICAgICAgfSwKICAgICAgICAgICAgInZlcmlmaWNhdGlvbiI6IHsKICAgICAgICAgICAgICAidmlhIjogImVtYWlsIgogICAgICAgICAgICB9LAogICAgICAgICAgICAicmVjb3ZlcnkiOiB7CiAgICAgICAgICAgICAgInZpYSI6ICJlbWFpbCIKICAgICAgICAgICAgfQogICAgICAgICAgfQogICAgICAgIH0sCiAgICAgICAgIm5hbWUiOiB7CiAgICAgICAgICAidHlwZSI6ICJvYmplY3QiLAogICAgICAgICAgInByb3BlcnRpZXMiOiB7CiAgICAgICAgICAgICJmaXJzdCI6IHsKICAgICAgICAgICAgICAidGl0bGUiOiAiRmlyc3QgTmFtZSIsCiAgICAgICAgICAgICAgInR5cGUiOiAic3RyaW5nIgogICAgICAgICAgICB9LAogICAgICAgICAgICAibGFzdCI6IHsKICAgICAgICAgICAgICAidGl0bGUiOiAiTGFzdCBOYW1lIiwKICAgICAgICAgICAgICAidHlwZSI6ICJzdHJpbmciCiAgICAgICAgICAgIH0KICAgICAgICAgIH0KICAgICAgICB9CiAgICAgIH0sCiAgICAgICJyZXF1aXJlZCI6IFsiZW1haWwiXSwKICAgICAgImFkZGl0aW9uYWxQcm9wZXJ0aWVzIjogZmFsc2UKICAgIH0KICB9Cn0K"
}'
config:
identity:
default_schema_id: prescriber
schemas:
- id: prescriber
url: <base64://ewogICIkaWQiOiAicHJlc2NyaWJlci1pZGVudGl0eS5zY2hlbWEuanNvbiIsCiA>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
selfservice:
default_browser_return_url: "<https://app.staging.example.com/login>"
methods:
password:
enabled: true
flows:
error:
ui_url: "<https://app.staging.example.com/login>"
login:
ui_url: "<https://app.staging.example.com/login>"
lifespan: 10m
logout:
after:
default_browser_return_url: "<https://app.staging.example.com/login>"
registration:
lifespan: 10m
ui_url: "<https://app.staging.example.com/register>"
after:
password:
hooks:
- hook: session
courier:
smtp:
connection_uri: smtps://<token>:<token>@smtp.postmarkapp.com:587/?skip_ssl_verify=false
dsn: "<postgres://examplestagingkratos>:<password>@<ip-address>:5432/examplestagingkratos?sslmode=disable&max_conns=20&max_idle_conns=4"
secrets:
default:
- dolore occaecat nostrud Ut
- sit et commodoaute ut voluptate consectetur Duisconfig.selfservice.loginconfig.selfservice.logoutconfig.selfservice.registration Copy code
The configuration contains values or keys which are invalid:
selfservice: map[default_browser_return_url:<https://app.staging.example.com/login> flows:map[error:map[ui_url:<https://app.staging.example.com/login>] login:map[lifespan:1h ui_url:<https://www.ory.sh/kratos/docs/fallback/login>] recovery:map[enabled:false lifespan:1h ui_url:<https://www.ory.sh/kratos/docs/fallback/recovery>] registration:map[enabled:true lifespan:1h ui_url:<https://www.ory.sh/kratos/docs/fallback/registration>] settings:map[lifespan:1h privileged_session_max_age:1h required_aal:highest_available ui_url:<https://www.ory.sh/kratos/docs/fallback/settings>] verification:map[enabled:false lifespan:1h ui_url:<https://www.ory.sh/kratos/docs/fallback/verification]]> login:map[lifespan:10m ui_url:<https://app.staging.example.com/login>] logout:map[after:map[default_browser_return_url:<https://app.staging.example.com/login]]> methods:map[link:map[config:map[lifespan:1h] enabled:true] lookup_secret:map[enabled:false] oidc:map[enabled:false] password:map[config:map[haveibeenpwned_enabled:true haveibeenpwned_host:<http://api.pwnedpasswords.com|api.pwnedpasswords.com> identifier_similarity_check_enabled:true ignore_network_errors:true max_breaches:0 min_password_length:8] enabled:true] profile:map[enabled:true] totp:map[enabled:false] webauthn:map[enabled:false]] registration:map[after:map[password:map[hooks:[map[hook:session]]]] lifespan:10m ui_url:<https://app.staging.example.com/register]]>
^-- additionalProperties "logout", "registration", "login" not allowed2 Views