authentik_mongodb_atlas_sso
Beta
Direct

Authentik MongoDB Atlas SSO

This module configures Authentik for integration with MongoDB Atlas.

Guide

Deploy MongoDB Atlas Provider & Application in Authentik

  1. Add a new a authentik_mongodb_atlas_sso folder adjacent to your authentik_core_resources folder.
  2. Add a new a terragrunt.hcl file that looks like this.
  3. Run pf-tf-init
  4. Run terragrunt apply

Setup MongoDB Atlas Identity Provider

Please follow the steps defined in the MongoDB Atlas Identity Provider and resume here.

Sync Authentik with the Atlas Settings

ACS & Audience URL

  1. Copy and set the ACS URL from the MongoDB Atlas Identity Provider setup to the acs_url input.
  2. Copy and set the Audience URI from the MongoDB Atlas Identity Provider setup to the audience input.
  3. Run terragrunt apply

Test the Integration

  1. Go to your Authentik instance
  2. Find the mongodb atlas application
  3. Click and confirm that you are able to login

Providers

The following providers are needed by this module:

Required Inputs

The following input variables are required:

acs_url

Description: The ACS url provided by Mongo Atlas when configuring an external identity provider

Type: string

audience

Description: The Entity URL provided by the Service Provider

Type: string

authentik_domain

Description: The domain name of the authentik instance

Type: string

organization_name

Description: The name of your organization

Type: string

Optional Inputs

The following input variables are optional (have default values):

allowed_groups

Description: Only members of these groups can access MongoDB

Type: set(string)

Default: []

authentik_namespace

Description: The kubernetes namespace where Authentik is deployed

Type: string

Default: "authentik"

media_configmap

Description: The configmap holding the static media that Authentik will use

Type: string

Default: "media"

ui_description

Description: The description to display in the Authentik web dashboard

Type: string

Default: "MongoDB Atlas"

Outputs

The following outputs are exported:

issuer_url

Description: The Authentik issuer URL for the MongoDB Atlas provider

saml_metadata

Description: The SAML metadata for the MongoDB Atlas provider

url_sso_post

Description: The SSO POST URL for the MongoDB Atlas provider

Maintainer Notes

No notes