fix: dynamic config wazuh config.yml

ADORSYS-GIS · Jan 28, 2025 · afffb88 · afffb88
1 parent e2ac0f0
commit afffb88
Show file tree

Hide file tree

Showing 2 changed files with 33 additions and 21 deletions.
diff --git a/charts/wazuh/Chart.yaml b/charts/wazuh/Chart.yaml
@@ -15,7 +15,7 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.3.1-rc2
+version: 0.3.1-rc3
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to

diff --git a/charts/wazuh/files/configs/config.yml b/charts/wazuh/files/configs/config.yml
@@ -1,20 +1,32 @@
-authc:
-  saml_auth_domain:
-    http_enabled: true
-    transport_enabled: false
-    order: 1
-    http_authenticator:
-      type: saml
-      challenge: true
-      config:
-        idp:
-          entity_id: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.idp.entity_id "context" $) }}'
-          metadata_file: /etc/wazuh-indexer/opensearch-security/idp.metadata.xml
-        sp:
-          entity_id: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.sp.entity_id "context" $) }}'
-          metadata_file: /etc/wazuh-indexer/opensearch-security/sp.metadata.xml
-        kibana_url: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.kibana_url "context" $) }}'
-        roles_key: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.roles_key "context" $) }}'
-        exchange_key: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.exchange_key "context" $) }}'
-    authentication_backend:
-      type: noop
+config:
+  dynamic:
+    authc:
+      basic_internal_auth_domain:
+        description: "Authenticate via HTTP Basic against internal users database"
+        http_enabled: true
+        transport_enabled: true
+        order: 0
+        http_authenticator:
+          type: "basic"
+          challenge: false
+        authentication_backend:
+          type: "intern"
+      saml_auth_domain:
+        http_enabled: true
+        transport_enabled: false
+        order: 1
+        http_authenticator:
+          type: saml
+          challenge: true
+          config:
+            idp:
+              entity_id: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.idp.entity_id "context" $) }}'
+              metadata_file: /etc/wazuh-indexer/opensearch-security/idp.metadata.xml
+            sp:
+              entity_id: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.sp.entity_id "context" $) }}'
+              metadata_file: /etc/wazuh-indexer/opensearch-security/sp.metadata.xml
+            kibana_url: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.kibana_url "context" $) }}'
+            roles_key: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.roles_key "context" $) }}'
+            exchange_key: '{{ include "common.tplvalues.render" (dict "value" $.Values.indexer.keycloak.exchange_key "context" $) }}'
+        authentication_backend:
+          type: noop