AppSSO for App Operators

To secure a Workload with AppSSO you need a ClientRegistration with these ingredients:

  • A unique label selector for the AuthServer you want to register a client for
  • Remaining configuration of your OAuth2 client

Talk to your Service Operator to learn which AuthServers they are running and which labels you should use. Once you have those labels, you can create a ClientRegistration as follows:

---
apiVersion: sso.apps.tanzu.vmware.com/v1alpha1
kind: ClientRegistration
metadata:
  name: my-client
  namespace: my-team
spec:
  authServerSelector:
    matchLabels: # for example
      env: staging
      ldap: True
      team: my-team

Continue with learning how to customize your ClientRegistration by securing a Workload with SSO.

Learn more about grant types.

check-circle-line exclamation-circle-line close-line
Scroll to top icon