From 06d077335bc6b3377a9a295423a3812cbf503c88 Mon Sep 17 00:00:00 2001
From: alexlebens <alexanderlebens@gmail.com>
Date: Mon, 27 May 2024 18:20:29 -0500
Subject: [PATCH] add oidc crypto key

---
 clusters/cl01tl/applications/freshrss/Chart.yaml     | 12 +++++++++---
 .../freshrss/templates/external-secret.yaml          |  7 +++++++
 clusters/cl01tl/applications/freshrss/values.yaml    |  2 +-
 3 files changed, 17 insertions(+), 4 deletions(-)

diff --git a/clusters/cl01tl/applications/freshrss/Chart.yaml b/clusters/cl01tl/applications/freshrss/Chart.yaml
index 0fa4977fb..0e8bae66f 100644
--- a/clusters/cl01tl/applications/freshrss/Chart.yaml
+++ b/clusters/cl01tl/applications/freshrss/Chart.yaml
@@ -1,20 +1,26 @@
 apiVersion: v2
 name: freshrss
 version: 1.0.0
+description: FreshRss deployment
+keywords:
+  - rss
 sources:
   - https://github.com/FreshRSS/FreshRSS
   - https://github.com/alexlebens/helm-charts/tree/main/charts/hfreshrss
+maintainers:
+  - name: alexlebens  
 dependencies:
   - name: app-template
-    alias: freshrss  
+    alias: freshrss
     repository: https://bjw-s.github.io/helm-charts/
     version: 3.2.1
   - name: app-template
     alias: cloudflared
     repository: https://bjw-s.github.io/helm-charts/
-    version: 3.2.1    
+    version: 3.2.1
   - name: postgres-cluster
     alias: postgres-16-cluster
     version: 3.1.0
-    repository: http://alexlebens.github.io/helm-charts    
+    repository: http://alexlebens.github.io/helm-charts
+icon: https://avatars.githubusercontent.com/u/9414285?s=48&v=4    
 appVersion: "1.23.1"
diff --git a/clusters/cl01tl/applications/freshrss/templates/external-secret.yaml b/clusters/cl01tl/applications/freshrss/templates/external-secret.yaml
index b58a874bf..b7d2e37a8 100644
--- a/clusters/cl01tl/applications/freshrss/templates/external-secret.yaml
+++ b/clusters/cl01tl/applications/freshrss/templates/external-secret.yaml
@@ -28,6 +28,13 @@ spec:
         key: /authentik/oidc/freshrss
         metadataPolicy: None
         property: secret
+    - secretKey: OIDC_CLIENT_CRYPTO_KEY
+      remoteRef:
+        conversionStrategy: Default
+        decodingStrategy: None
+        key: /authentik/oidc/freshrss
+        metadataPolicy: None
+        property: crypto-key
 
 ---
 apiVersion: external-secrets.io/v1beta1
diff --git a/clusters/cl01tl/applications/freshrss/values.yaml b/clusters/cl01tl/applications/freshrss/values.yaml
index 0dfc80018..399dc1a31 100644
--- a/clusters/cl01tl/applications/freshrss/values.yaml
+++ b/clusters/cl01tl/applications/freshrss/values.yaml
@@ -25,7 +25,7 @@ freshrss:
             - name: OIDC_ENABLED
               value: 1
             - name: OIDC_PROVIDER_METADATA_URL
-              value: https://authentik.alexlebens.net/application/o/freshrss/.well-known/openid-configuration
+              value: https://auth.alexlebens.dev/application/o/freshrss/.well-known/openid-configuration
             - name: OIDC_X_FORWARDED_HEADERS
               value: X-Forwarded-Port X-Forwarded-Proto X-Forwarded-Host
             - name: OIDC_SCOPES