alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 15 Actions Activity

feat: add more

Browse Source
This commit is contained in:
Alex Lebens
2026-04-22 19:14:38 -05:00
parent f0bd248799
commit 5d23f3c391
22 changed files with 252 additions and 201 deletions
Download Patch File Download Diff File Expand all files Collapse all files

41
clusters/cl01tl/helm/paperless-ngx/templates/external-secret.yaml
View File

@@ -1,51 +1,58 @@
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: paperless-ngx-secret
name: paperless-ngx-key
namespace: {{ .Release.Namespace }}
labels:
app.kubernetes.io/name: paperless-ngx-secret
app.kubernetes.io/name: paperless-ngx-key
{{- include "custom.labels" . | nindent 4 }}
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
name: openbao
data:
- secretKey: secret-key
remoteRef:
key: /cl01tl/paperless-ngx/secret
key: /cl01tl/paperless-ngx/key
property: secret-key
---
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: paperless-ngx-config
namespace: {{ .Release.Namespace }}
labels:
app.kubernetes.io/name: paperless-ngx-config
{{- include "custom.labels" . | nindent 4 }}
spec:
secretStoreRef:
kind: ClusterSecretStore
name: openbao
data:
- secretKey: admin-user
remoteRef:
key: /cl01tl/paperless-ngx/secret
key: /cl01tl/paperless-ngx/config
property: admin-user
- secretKey: admin-password
remoteRef:
key: /cl01tl/paperless-ngx/secret
key: /cl01tl/paperless-ngx/config
property: admin-password
---
apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: paperless-ngx-oidc-secret
name: paperless-ngx-oidc-authentik
namespace: {{ .Release.Namespace }}
labels:
app.kubernetes.io/name: paperless-ngx-oidc-secret
app.kubernetes.io/name: paperless-ngx-oidc-authentik
{{- include "custom.labels" . | nindent 4 }}
spec:
secretStoreRef:
kind: ClusterSecretStore
name: vault
name: openbao
data:
- secretKey: OIDC_CLIENT_ID
remoteRef:
key: /authentik/oidc/paperless-ngx
property: client
- secretKey: OIDC_CLIENT_SECRET
remoteRef:
key: /authentik/oidc/paperless-ngx
property: secret
- secretKey: PAPERLESS_SOCIALACCOUNT_PROVIDERS
remoteRef:
key: /authentik/oidc/paperless-ngx

8
clusters/cl01tl/helm/paperless-ngx/values.yaml
View File

@@ -44,7 +44,7 @@ paperless-ngx:
- name: PAPERLESS_SECRET_KEY
valueFrom:
secretKeyRef:
name: paperless-ngx-secret
name: paperless-ngx-key
key: secret-key
- name: PAPERLESS_URL
value: https://paperless-ngx.alexlebens.net
@@ -53,12 +53,12 @@ paperless-ngx:
- name: PAPERLESS_ADMIN_USER
valueFrom:
secretKeyRef:
name: paperless-ngx-secret
name: paperless-ngx-config
key: admin-user
- name: PAPERLESS_ADMIN_PASSWORD
valueFrom:
secretKeyRef:
name: paperless-ngx-secret
name: paperless-ngx-config
key: admin-password
- name: PAPERLESS_ACCOUNT_ALLOW_SIGNUPS
value: true
@@ -73,7 +73,7 @@ paperless-ngx:
- name: PAPERLESS_SOCIALACCOUNT_PROVIDERS
valueFrom:
secretKeyRef:
name: paperless-ngx-oidc-secret
name: paperless-ngx-oidc-authentik
key: PAPERLESS_SOCIALACCOUNT_PROVIDERS
- name: PAPERLESS_SOCIALACCOUNT_DEFAULT_PERMISSIONS
value: '["view_uisettings", "view_savedview", "add_uisettings", "change_uisettings", "delete_uisettings"]'