add oidc crypto key

clusters/cl01tl/applications/freshrss/Chart.yaml

@@ -1,20 +1,26 @@
 apiVersion: v2
 name: freshrss
 version: 1.0.0
+description: FreshRss deployment
+keywords:
+  - rss
 sources:
   - https://github.com/FreshRSS/FreshRSS
   - https://github.com/alexlebens/helm-charts/tree/main/charts/hfreshrss
+maintainers:
+  - name: alexlebens  
 dependencies:
   - name: app-template
-    alias: freshrss  
+    alias: freshrss
     repository: https://bjw-s.github.io/helm-charts/
     version: 3.2.1
   - name: app-template
     alias: cloudflared
     repository: https://bjw-s.github.io/helm-charts/
-    version: 3.2.1    
+    version: 3.2.1
   - name: postgres-cluster
     alias: postgres-16-cluster
     version: 3.1.0
-    repository: http://alexlebens.github.io/helm-charts    
+    repository: http://alexlebens.github.io/helm-charts
+icon: https://avatars.githubusercontent.com/u/9414285?s=48&v=4    
 appVersion: "1.23.1"

clusters/cl01tl/applications/freshrss/templates/external-secret.yaml

@@ -28,6 +28,13 @@ spec:
         key: /authentik/oidc/freshrss
         metadataPolicy: None
         property: secret
+    - secretKey: OIDC_CLIENT_CRYPTO_KEY
+      remoteRef:
+        conversionStrategy: Default
+        decodingStrategy: None
+        key: /authentik/oidc/freshrss
+        metadataPolicy: None
+        property: crypto-key
 
 ---
 apiVersion: external-secrets.io/v1beta1

clusters/cl01tl/applications/freshrss/values.yaml

@@ -25,7 +25,7 @@ freshrss:
             - name: OIDC_ENABLED
               value: 1
             - name: OIDC_PROVIDER_METADATA_URL
-              value: https://authentik.alexlebens.net/application/o/freshrss/.well-known/openid-configuration
+              value: https://auth.alexlebens.dev/application/o/freshrss/.well-known/openid-configuration
             - name: OIDC_X_FORWARDED_HEADERS
               value: X-Forwarded-Port X-Forwarded-Proto X-Forwarded-Host
             - name: OIDC_SCOPES