Flow client is used to invoke flows that require signed oidc requests to access.
Create an environment specific vars-<env>.yaml file. Configure it with the parameters needed for that environment. See vars-env.yaml for the format.
cf push --vars-file vars.yaml --vars-file vars-<env>.yaml --var ENVIRONMENT=<env>
The flow client can be used over http or with cli over ssh
Visit the flow client url and log in with idp account. After logging in, you will be able to invoke a flow.
ssh into the instance and run app/sign_url.sh to produce a signed url.
usage: sign_url.sh [-h] [-n NAME] [-u URL] [-l] [-d DAYS] [-s SECONDS]
Generate a url with signed request object for a flow endpoint.
flow can be selected by name from list in config or specified by url. if not specified, defaults to first flow in config.
time is specified in days and seconds. defaults to time set in config which is usually 1 day
options:
-h, --help show this help message and exit
-n NAME, --name NAME flow name. used to select flow from list of flows in config
-u URL, --url URL flow url
-l, --list list stored flow names
-d DAYS, --days DAYS num days sig is valid. summed with seconds
-s SECONDS, --seconds SECONDS
num seconds sig is valid. summed with days