alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 8 Actions Packages Projects Releases Wiki Activity

chnage oidc config

Browse Source
This commit is contained in:
Alex Lebens
2024-07-02 11:07:01 -05:00
parent 58559f5b74
commit 318990ce84
2 changed files with 19 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
clusters/cl01tl/management/headlamp/templates/external-secret.yaml
View File

@@ -4,7 +4,7 @@ metadata:
name: headlamp-oidc-secret name: headlamp-oidc-secret
namespace: {{ .Release.Namespace }} namespace: {{ .Release.Namespace }}
labels: labels:
app.kubernetes.io/name: {{ .Release.Name }} app.kubernetes.io/name: headlamp-oidc-secret
app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/instance: {{ .Release.Name }}
app.kubernetes.io/version: {{ .Chart.AppVersion }} app.kubernetes.io/version: {{ .Chart.AppVersion }}
app.kubernetes.io/component: web app.kubernetes.io/component: web
@@ -14,17 +14,31 @@ spec:
kind: ClusterSecretStore kind: ClusterSecretStore
name: vault name: vault
data: data:
- secretKey: HEADLAMP_CONFIG_OIDC_CLIENT_ID - secretKey: clientID
remoteRef: remoteRef:
conversionStrategy: Default conversionStrategy: Default
decodingStrategy: None decodingStrategy: None
key: /authentik/oidc/headlamp key: /authentik/oidc/headlamp
metadataPolicy: None metadataPolicy: None
property: client property: client
- secretKey: HEADLAMP_CONFIG_OIDC_CLIENT_SECRET - secretKey: clientSecret
remoteRef: remoteRef:
conversionStrategy: Default conversionStrategy: Default
decodingStrategy: None decodingStrategy: None
key: /authentik/oidc/headlamp key: /authentik/oidc/headlamp
metadataPolicy: None metadataPolicy: None
property: secret property: secret
- secretKey: issuerURL
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /authentik/oidc/headlamp
metadataPolicy: None
property: issuer
- secretKey: scopes
remoteRef:
conversionStrategy: Default
decodingStrategy: None
key: /authentik/oidc/headlamp
metadataPolicy: None
property: scopes

17
clusters/cl01tl/management/headlamp/values.yaml
View File

@@ -2,21 +2,8 @@ headlamp:
config: config:
oidc: oidc:
secret: secret:
create: true create: false
name: headlamp-oidc-generated-secret name: headlamp-oidc-secret
env:
- name: HEADLAMP_CONFIG_OIDC_CLIENT_ID
valueFrom:
secretKeyRef:
key: HEADLAMP_CONFIG_OIDC_CLIENT_ID
name: headlamp-oidc-secret
- name: HEADLAMP_CONFIG_OIDC_CLIENT_SECRET
valueFrom:
secretKeyRef:
key: HEADLAMP_CONFIG_OIDC_CLIENT_SECRET
name: headlamp-oidc-secret
- name: HEADLAMP_CONFIG_OIDC_IDP_ISSUER_URL
value: https://authentik.alexlebens.net/application/o/headlamp/
persistentVolumeClaim: persistentVolumeClaim:
enabled: true enabled: true
accessModes: accessModes: