|
|
This section holds Azure specific operating procedure for the open source version of OSDU
|
|
|
|
|
|
## Integrating with Identity Providers
|
|
|
OSDU services on Azure run in AKS and use Istio to orchestrate identity validation. The Azure Istio configuration is provided as a [template](https://community.opengroup.org/osdu/platform/deployment-and-operations/infra-azure-provisioning/-/blob/master/charts/osdu-istio/templates/authentication.yaml) which can be edited by OSDU providers on Azure or customers and configure to attach to their preferred identity providers. For example, if you are not using AzureAD and prefer to use an identity provider like Okta or Google, you can set the variable ` .Values.global.azure.tenant ` to point to your own identity provider.
|
|
|
OSDU services on Azure run in AKS and use Istio to orchestrate identity validation. The Azure Istio configuration is provided as a [template](https://community.opengroup.org/osdu/platform/deployment-and-operations/infra-azure-provisioning/-/blob/master/charts/osdu-istio/templates/authentication.yaml) which can be edited by OSDU providers on Azure or customers and configure to attach to their preferred identity providers.
|
|
|
If you would like to customize your identity provider you can:
|
|
|
- Use the template as-is and simply set the variable ` .Values.global.azure.tenant ` to point to your own Azure AD tenant.
|
|
|
- Edit the the template and change the `issuer` and the `jwksUri` in the `jwtRules:` section of the template, then use the [helm charts](https://community.opengroup.org/osdu/platform/deployment-and-operations/helm-charts-azure/-/blob/master/osdu-istio/README.md) to deploy your configuration.
|
|
|
|
|
|
|
|
|
## Backup and Restore for OSDU Data
|
|
|
The [Backup/Restore functionality for Azure](https://community.opengroup.org/osdu/platform/deployment-and-operations/infra-azure-provisioning/-/blob/master/docs/backup-restore.md) is currently still in development, however [this](https://community.opengroup.org/osdu/platform/deployment-and-operations/infra-azure-provisioning/-/blob/master/docs/backup-restore.md) is the target architecture that will be supported in R3.
|
... | ... | |