diff --git a/教程/20250107-Yearning安装及SSO接入指南.md b/教程/20250107-Yearning安装及SSO接入指南.md index 0b89908..abd57af 100644 --- a/教程/20250107-Yearning安装及SSO接入指南.md +++ b/教程/20250107-Yearning安装及SSO接入指南.md @@ -26,71 +26,6 @@ - 可以参考:https://next.yearning.io/zh/usage/ixah25xr/ -### Docker Compose - - - -#### `conf.toml` 文件 - -```toml -[Mysql] -Db = "Yearning" -Host = "127.0.0.1" -Port = "3306" -Password = "" -User = "root" - -[General] -SecretKey = "dbcjqheupqjsuwsm" -Hours = 4 -Lang = "zh_CN" - -[Oidc] -Enable = false -ClientId = "${keycloak的客户端ID}" -ClientSecret = "${keycloak的客户端Secret}" -Scope = "openid profile" -AuthUrl = "${issuer链接}/protocol/openid-connect/auth" -TokenUrl = "${issuer链接}/protocol/openid-connect/token" -UserUrl = "${issuer链接}/protocol/openid-connect/userinfo" -RedirectUrL = "${yearning的地址}/oidc/_token-login" -UserNameKey = "preferred_username" -RealNameKey = "name" -EmailKey = "email" -SessionKey = "session_state" -``` - -### Yearning OIDC 配置 - -- 可以参考:https://next.yearning.io/zh/usage/boccobus/ - -#### 修改 `conf.toml`(Keycloak示例) - -```toml -[Oidc] -Enable = true -ClientId = "${keycloak的客户端ID}" -ClientSecret = "${keycloak的客户端Secret}" -Scope = "openid profile" -AuthUrl = "${issuer链接}/protocol/openid-connect/auth" -TokenUrl = "${issuer链接}/protocol/openid-connect/token" -UserUrl = "${issuer链接}/protocol/openid-connect/userinfo" -RedirectUrL = "${yearning的地址}/oidc/_token-login" -UserNameKey = "preferred_username" -RealNameKey = "name" -EmailKey = "email" -SessionKey = "session_state" -``` - -- ${keycloak的客户端ID}:例如 `yearning` -- ${keycloak的客户端Secret}: Keycloak中获取 -- ${issuer链接}: Keycloak 中获取 -- ${yearning的地址}:yearning 请求地址 - -### 异常处理 - -- 如果出现异常,可以排查 `Yearning` 服务和 `Keycloak` 服务是否可以访问通畅。 -- 或者说 `Yearning` SSO 配置中的链接在 `Yearning` 所在服务中是否可以正常访问 ## 本地构建启动(参考) @@ -153,11 +88,11 @@ mv node-v18.20.5-linux-x64 /usr/local/nodejs #- 配置环境变量 vi /etc/profile -####-/etc/profile start +####- /etc/profile start export GOROOT=/usr/local/go export NODE_HOME=/usr/local/nodejs export PATH=$PATH:$GOROOT/bin:$NODE_HOME/bin -####-/etc/profile end +####- /etc/profile end #- 验证安装 node -v