From f3175bcff2f520a252145b4c6c011c5003ca0ea8 Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Mon, 17 Feb 2025 18:23:43 -0600 Subject: [PATCH] add authentik --- .../platform/authentik/Chart.yaml | 0 .../platform/authentik/templates/config-map.yaml | 0 .../authentik/templates/external-secret.yaml | 0 .../platform/authentik/templates/ingress.yaml | 16 ++++++---------- .../platform/authentik/values.yaml | 14 ++++++-------- 5 files changed, 12 insertions(+), 18 deletions(-) rename clusters/{standby => cl01tl}/platform/authentik/Chart.yaml (100%) rename clusters/{standby => cl01tl}/platform/authentik/templates/config-map.yaml (100%) rename clusters/{standby => cl01tl}/platform/authentik/templates/external-secret.yaml (100%) rename clusters/{standby => cl01tl}/platform/authentik/templates/ingress.yaml (58%) rename clusters/{standby => cl01tl}/platform/authentik/values.yaml (88%) diff --git a/clusters/standby/platform/authentik/Chart.yaml b/clusters/cl01tl/platform/authentik/Chart.yaml similarity index 100% rename from clusters/standby/platform/authentik/Chart.yaml rename to clusters/cl01tl/platform/authentik/Chart.yaml diff --git a/clusters/standby/platform/authentik/templates/config-map.yaml b/clusters/cl01tl/platform/authentik/templates/config-map.yaml similarity index 100% rename from clusters/standby/platform/authentik/templates/config-map.yaml rename to clusters/cl01tl/platform/authentik/templates/config-map.yaml diff --git a/clusters/standby/platform/authentik/templates/external-secret.yaml b/clusters/cl01tl/platform/authentik/templates/external-secret.yaml similarity index 100% rename from clusters/standby/platform/authentik/templates/external-secret.yaml rename to clusters/cl01tl/platform/authentik/templates/external-secret.yaml diff --git a/clusters/standby/platform/authentik/templates/ingress.yaml b/clusters/cl01tl/platform/authentik/templates/ingress.yaml similarity index 58% rename from clusters/standby/platform/authentik/templates/ingress.yaml rename to clusters/cl01tl/platform/authentik/templates/ingress.yaml index b0a72161e..4ae408edd 100644 --- a/clusters/standby/platform/authentik/templates/ingress.yaml +++ b/clusters/cl01tl/platform/authentik/templates/ingress.yaml @@ -1,26 +1,22 @@ apiVersion: networking.k8s.io/v1 kind: Ingress metadata: - name: authentik-local + name: authentik-tailscale namespace: {{ .Release.Namespace }} labels: - app.kubernetes.io/name: authentik-local + app.kubernetes.io/name: authentik-tailscale app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/version: {{ .Chart.AppVersion }} app.kubernetes.io/component: web app.kubernetes.io/part-of: {{ .Release.Name }} - annotations: - traefik.ingress.kubernetes.io/router.entrypoints: websecure - traefik.ingress.kubernetes.io/router.tls: "true" - cert-manager.io/cluster-issuer: letsencrypt-issuer spec: - ingressClassName: traefik + ingressClassName: tailscale tls: - hosts: - - authentik.alexlebens.net - secretName: authentik-tls-secret + - auth-cl01tl + secretName: auth-cl01tl rules: - - host: authentik.alexlebens.net + - host: auth-cl01tl http: paths: - path: / diff --git a/clusters/standby/platform/authentik/values.yaml b/clusters/cl01tl/platform/authentik/values.yaml similarity index 88% rename from clusters/standby/platform/authentik/values.yaml rename to clusters/cl01tl/platform/authentik/values.yaml index 52e3f22c5..7bd2c81ba 100644 --- a/clusters/standby/platform/authentik/values.yaml +++ b/clusters/cl01tl/platform/authentik/values.yaml @@ -43,17 +43,15 @@ authentik: enabled: true ingress: enabled: true - ingressClassName: tailscale - annotations: - tailscale.com/experimental-forward-cluster-traffic-via-ingress: "true" + ingressClassName: traefik hosts: - - auth-cl01tl + - authentik.alexlebens.net paths: - / tls: - - secretName: auth-cl01tl + - secretName: authentik-tls-secret hosts: - - auth-cl01tl + - authentik.alexlebens.net worker: name: worker replicas: 1 @@ -76,8 +74,8 @@ postgres-17-cluster: monitoring: enabled: true backup: - enabled: true + enabled: false endpointURL: https://nyc3.digitaloceanspaces.com destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/authentik/authentik-postgresql-17-cluster endpointCredentials: authentik-postgresql-17-cluster-backup-secret - backupIndex: 1 + backupIndex: 2