cognito integration

47 views
Skip to first unread message

Arup Sarkar

unread,
Aug 17, 2019, 4:48:41 AM8/17/19
to kubernetes-sig-aws
Hi to all,

  I have a rest endpoint (/engine-rest) and web app(/camunda-welcome) in the kubernetes cluster. I was able to access the rest endpoint using postman. Without cognito integration, both can be reachable. After integration of cognito, obviously both are restricted. I am trying first to get rest end point working with cognito settings, I am able to get authentication code from https://infocept.auth.us-east-1.amazoncognito.com/login?response_type=code&client_id=75gd297e80s66dil8ub5uhogkg&redirect_uri=https://49b5f81d-default-ingressse-e4de-1606815306.us-east-1.elb.amazonaws.com/camunda-welcome/index.html/oauth2/idpresponse/&state=STATE&scope=openid though it is taking lot of time and end result the page is not displayed. However I can see the code on the browser address bar. Below is my ingress configuration for reference. Let me know if anything else is required for debugging


apiVersion : extensions/v1beta1
kind: Ingress
metadata:
name: ingress-service
annotations:
alb.ingress.kubernetes.io/listen-ports: '[{"HTTP": 80}, {"HTTPS":443}]'
alb.ingress.kubernetes.io/actions.ssl-redirect: '{"Type": "redirect", "RedirectConfig": { "Protocol": "HTTPS", "Port": "443", "StatusCode": "HTTP_301"}}'
alb.ingress.kubernetes.io/auth-idp-cognito: '{"UserPoolArn": "arn:aws:cognito-idp:us-east-1:719575682672:userpool/us-east-1_EROlCHfil","UserPoolClientId":"75gd297e80s66dil8ub5uhogkg","UserPoolDomain":"infocept"}'
labels:
component: cammunda-bpm
spec:
rules:
- http:
paths:
- path: /*
backend:
serviceName: ssl-redirect
servicePort: use-annotation
- path: /camunda-welcome
backend:
serviceName: cammunda-bpm-cluster-ip-service
servicePort: 8080
- path: /engine-rest
backend:
serviceName: cammunda-bpm-cluster-ip-service
servicePort: 8080
Reply all
Reply to author
Forward
0 new messages