Skip to content

docs: update external auth to better explain process #16027

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 13 commits into from
Jan 7, 2025
Merged

docs: update external auth to better explain process #16027

Changes from 1 commit
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
2db695b
docs: update external auth to better explain process (#15970)
ChristopherJTrent Jan 3, 2025
625f3ba
Merge remote-tracking branch 'origin/main' into 15970-external-auth-u…
EdwardAngert Jan 3, 2025
096326d
make lint/fmt
EdwardAngert Jan 3, 2025
85b8e36
md alignment
EdwardAngert Jan 3, 2025
cc0939a
external-auth intro from setup/index
EdwardAngert Jan 3, 2025
1cba651
Merge remote-tracking branch 'origin/main' into 15970-external-auth-u…
EdwardAngert Jan 6, 2025
e84811c
abc git providers
EdwardAngert Jan 6, 2025
b1f32b5
git providers to tabs
EdwardAngert Jan 6, 2025
1af84ed
Revert "git providers to tabs"
EdwardAngert Jan 6, 2025
1782454
parent heading to git providers
EdwardAngert Jan 6, 2025
db03ea0
highlight oauth provider in intro
EdwardAngert Jan 6, 2025
30a4221
inc suggestions from review
EdwardAngert Jan 7, 2025
411fb43
add issue link and align example variables
EdwardAngert Jan 7, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
md alignment
  • Loading branch information
@EdwardAngert
EdwardAngert committed Jan 3, 2025
commit 85b8e363cf4f066743bf97d7d545f0d432296d1f
52 changes: 25 additions & 27 deletions docs/admin/setup/index.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@ a wildcard subdomain that resolves to Coder (e.g. `*.coder.example.com`).
If you are providing TLS certificates directly to the Coder server, either

1. Use a single certificate and key for both the root and wildcard domains.
2. Configure multiple certificates and keys via
1. Configure multiple certificates and keys via
[`coder.tls.secretNames`](https://github.com/coder/coder/blob/main/helm/coder/values.yaml)
in the Helm Chart, or
[`--tls-cert-file`](../../reference/cli/server.md#--tls-cert-file) and
Expand All @@ -78,29 +78,27 @@ working directory prior to step 1.

1. Create the TLS secret in your Kubernetes cluster

```shell
kubectl create secret tls coder-tls -n <coder-namespace> --key="tls.key" --cert="tls.crt"
```
```shell
kubectl create secret tls coder-tls -n <coder-namespace> --key="tls.key" --cert="tls.crt"
```

> You can use a single certificate for the both the access URL and wildcard
> access URL. The certificate CN must match the wildcard domain, such as
> `*.example.coder.com`.
You can use a single certificate for the both the access URL and wildcard access URL. The certificate CN must match the wildcard domain, such as `*.example.coder.com`.

1. Reference the TLS secret in your Coder Helm chart values

```yaml
coder:
tls:
secretName:
- coder-tls

# Alternatively, if you use an Ingress controller to terminate TLS,
# set the following values:
ingress:
enable: true
secretName: coder-tls
wildcardSecretName: coder-tls
```
```yaml
coder:
tls:
secretName:
- coder-tls

# Alternatively, if you use an Ingress controller to terminate TLS,
# set the following values:
ingress:
enable: true
secretName: coder-tls
wildcardSecretName: coder-tls
```

## PostgreSQL Database

Expand All @@ -115,7 +113,7 @@ If you are using the built-in PostgreSQL deployment and need to use `psql` (aka
the PostgreSQL interactive terminal), output the connection URL with the
following command:

```console
```shell
coder server postgres-builtin-url
psql "postgres://coder@localhost:49627/coder?sslmode=disable&password=feU...yI1"
```
Expand All @@ -126,13 +124,13 @@ To migrate from the built-in database to an external database, follow these
steps:

1. Stop your Coder deployment.
2. Run `coder server postgres-builtin-serve` in a background terminal.
3. Run `coder server postgres-builtin-url` and copy its output command.
4. Run `pg_dump <built-in-connection-string> > coder.sql` to dump the internal
1. Run `coder server postgres-builtin-serve` in a background terminal.
1. Run `coder server postgres-builtin-url` and copy its output command.
1. Run `pg_dump <built-in-connection-string> > coder.sql` to dump the internal
database to a file.
5. Restore that content to an external database with
1. Restore that content to an external database with
`psql <external-connection-string> < coder.sql`.
6. Start your Coder deployment with
1. Start your Coder deployment with
`CODER_PG_CONNECTION_URL=<external-connection-string>`.

## Configuring Coder behind a proxy
Expand All @@ -154,5 +152,5 @@ more information.

## Up Next

- [Learn how to setup and manage templates](../templates/index.md)
- [Setup and manage templates](../templates/index.md)
- [Setup external provisioners](../provisioners.md)