GCP OAuth Authentication

    When Chaos Mesh is deployed on the Google Cloud Platform, you can log in to Chaos Dashboard through Google OAuth. This document describes how to enable and configure this function.

    Create GCP OAuth client and get the Client ID and Client Secret according to Setting up OAuth 2.0.

    1. Go to the .
    2. If the APIs & services page was not loaded automatically, open the console left side menu and select “APIs & services” manually.
    3. Click “Credentials” on the left.
    4. Click “New Credentials”, then select “OAuth client ID”.
    5. Select “Web Application” as the application type, and enter additional information and the redirect URL of Chaos dashboard, which is . In this part, ROOT_URL is the root URL of Chaos dashboard, like “http://localhost:2333“. This URL can be set through the configuration item dashboard.rootUrl byhelm.

    To enable the function, you need to set the configuration items in helm charts as follows:

    1. Set to true.
    2. Set dashboard.gcpClientId to the Client ID from the former section.
    3. Set dashboard.gcpClientSecret to the Client Secret from the former section.
    4. Set to the root address of Chaos Dashboard.

    If Chaos Mesh has been installed, you can update the configuration items through helm upgrade. If not, you can install Chaos Mesh through helm install.

    After logging in to the Google account and being granted permission to OAuth Client, the page automatically redirects to Chaos Dashboard with logged-in status. At this time, you have the same permissions as the google account in this cluster. If you need to add other permissions, you can edit the permission through the RBAC (Role-based access control). For example: