The OIDC menu can be found in the JFrog Platform UI. As an admin, log in and go to Administration -> General -> Manage Integrations:
Find the "New Integration" button in the top right hand corner, and select "OpenID Connect".
Use the preconfigured GitHub Provider Type, it fills out the Provider URL automatically. When you choose the Provider Name, ensure it matches the example project: "github" . The other string to match is the Audience, it should be "jfrog-github" for this example.
We're almost done, the last thing to configure is the Identity Mapping. The main area to complete is the claims JSON text box. This determines which GitHub repositories are allowed to access Artifactory. This syntax should be used to allow the GitHub project repository access:
The rest of the form can be filled out by referring to this screenshot, the remaining fields are fairly straightforward:
Finally, create the repository the build will use: eks-npm, a virtual with a default npm Local Repository and a default npm Remote Repository:
Find the "New Integration" button in the top right hand corner, and select "OpenID Connect".
Use the preconfigured GitHub Provider Type, it fills out the Provider URL automatically. When you choose the Provider Name, ensure it matches the example project: "github" . The other string to match is the Audience, it should be "jfrog-github" for this example.
We're almost done, the last thing to configure is the Identity Mapping. The main area to complete is the claims JSON text box. This determines which GitHub repositories are allowed to access Artifactory. This syntax should be used to allow the GitHub project repository access:
{
"iss":"https://token.actions.githubusercontent.com",
"repository":"<org_name>/jfrog-github-oidc-example"
} The rest of the form can be filled out by referring to this screenshot, the remaining fields are fairly straightforward:
Finally, create the repository the build will use: eks-npm, a virtual with a default npm Local Repository and a default npm Remote Repository: