Step 1: Locate the Values to Change
Navigate to the cse directory and edit the cse.env or values.yaml file
Use this JSON format for your mobile device integration and replace the JWT_AUD value:
[
{
"authn": [
"671756027915-e6odj0joq1v28fcf8gk7cm716ov5d0gm.apps.googleusercontent.com",
"947318989803-k88lapdik9bledfml8rr69ic6d3rdv57.apps.googleusercontent.com",
"313892590415-d3h1l7kl4htab916r6jevqdtu8bfmh9m.apps.googleusercontent.com",
"313892590415-6lbccuf47cou4q45vanraqp3fv5jt9do.apps.googleusercontent.com",
"313892590415-q84luo8fon5pn5vl8a6rppo1qvcd3qvn.apps.googleusercontent.com",
"313892590415-283b3nilr8561tedgu1n4dcm9hd6g3hr.apps.googleusercontent.com",
"313892590415-samhd32i4piankgs42o9sit5e9dug452.apps.googleusercontent.com",
"313892590415-i06v47su4k03ns7ot38akv7s9ari5oa5.apps.googleusercontent.com",
"313892590415-ijvjpbnsh0gauuunjgsdn64ngg37k6rc.apps.googleusercontent.com",
"313892590415-32ha2bvs0tr1b12s089i33o58hjvqt55.apps.googleusercontent.com"
],
"authz": "cse-authorization",
"privileged-wrap": "Add Your Web Client ID Here"
}
]Reference: Mobile Devices Client IDs
Reference: Your Web Client ID
Step 2: Base64 Encode the JSON
Run this command:
echo -n '[{"authn":["671756027915-e6odj0joq1v28fcf8gk7cm716ov5d0gm.apps.googleusercontent.com","947318989803-k88lapdik9bledfml8rr69ic6d3rdv57.apps.googleusercontent.com","313892590415-d3h1l7kl4htab916r6jevqdtu8bfmh9m.apps.googleusercontent.com","313892590415-6lbccuf47cou4q45vanraqp3fv5jt9do.apps.googleusercontent.com","313892590415-q84luo8fon5pn5vl8a6rppo1qvcd3qvn.apps.googleusercontent.com","313892590415-283b3nilr8561tedgu1n4dcm9hd6g3hr.apps.googleusercontent.com","313892590415-samhd32i4piankgs42o9sit5e9dug452.apps.googleusercontent.com","313892590415-i06v47su4k03ns7ot38akv7s9ari5oa5.apps.googleusercontent.com","313892590415-ijvjpbnsh0gauuunjgsdn64ngg37k6rc.apps.googleusercontent.com","313892590415-32ha2bvs0tr1b12s089i33o58hjvqt55.apps.googleusercontent.com"],"authz":"cse-authorization","privileged-wrap":"Add Your Web Client ID Here"}]' | base64The terminal will return your Base64 string to insert into your .env file.
Step 3: Update the .env File
In your .env file:
- Locate the
JWT_AUDvariable. - Replace its value with the new Base64 string you just generated.
Example:
JWT_AUD=<your_new_base64_string_here>
Step 4: Apply the Changes
-
Delete the current pod or container.
- For Linux:
docker ps docker stop -f <container_name> docker rm -f <container_name>
- Recreate the container:
cd /var/virtru/cse sh run.sh
-
For Kubernetes:
Modify the values.yaml by replacing the old JWT_AUD with the newly created mobile devices client IDs.- Apply the Changes: After editing values.yaml, redeploy the Helm release with the updated configuration:
helm upgrade -n virtru -f ./values.yaml virtru ./ - This command will upgrade your release using the updated values.yaml file, and your changes will be applied to the running pods.
- Apply the Changes: After editing values.yaml, redeploy the Helm release with the updated configuration:
Summary
- JSON includes all mobile device Client IDs.
- JSON is correctly Base64 encoded.
-
.envor.yamlfile is updated with the new JWT_AUD value. - Docker container or pod is rebuilt and restarted.