Compare commits
3 Commits
47125c5d68
...
55341ba0d6
| Author | SHA1 | Date | |
|---|---|---|---|
| 55341ba0d6 | |||
| e7c2605097 | |||
| b682553b27 |
12
dmz/authentik/Chart.yaml
Normal file
12
dmz/authentik/Chart.yaml
Normal file
@@ -0,0 +1,12 @@
|
||||
apiVersion: v2
|
||||
name: authentik
|
||||
description: A Helm chart for Kubernetes
|
||||
type: application
|
||||
|
||||
version: 0.1.0
|
||||
appVersion: "1.16.0"
|
||||
|
||||
dependencies:
|
||||
- name: authentik-remote-cluster
|
||||
repository: https://charts.goauthentik.io
|
||||
version: 2.0.0
|
||||
30
dmz/authentik/values.yaml
Normal file
30
dmz/authentik/values.yaml
Normal file
@@ -0,0 +1,30 @@
|
||||
authentik-remote-cluster:
|
||||
# -- Provide a name in place of `authentik`. Prefer using global.nameOverride if possible
|
||||
nameOverride: ""
|
||||
# -- String to fully override `"authentik.fullname"`. Prefer using global.fullnameOverride if possible
|
||||
fullnameOverride: ""
|
||||
# -- Override the Kubernetes version, which is used to evaluate certain manifests
|
||||
kubeVersionOverride: ""
|
||||
|
||||
## Globally shared configuration for authentik components.
|
||||
global:
|
||||
# -- Provide a name in place of `authentik`
|
||||
nameOverride: ""
|
||||
# -- String to fully override `"authentik.fullname"`
|
||||
fullnameOverride: ""
|
||||
# -- A custom namespace to override the default namespace for the deployed resources.
|
||||
namespaceOverride: ""
|
||||
# -- Common labels for all resources.
|
||||
additionalLabels: {}
|
||||
# app: authentik
|
||||
|
||||
# -- Annotations to apply to all resources
|
||||
annotations: {}
|
||||
|
||||
serviceAccountSecret:
|
||||
# -- Create a secret with the service account credentials
|
||||
enabled: true
|
||||
|
||||
clusterRole:
|
||||
# -- Create a clusterole in addition to a namespaced role.
|
||||
enabled: true
|
||||
@@ -36,19 +36,19 @@ spec:
|
||||
- websecure
|
||||
routes:
|
||||
- match: Host(`redlib.durp.info`) && PathPrefix(`/`)
|
||||
# middlewares:
|
||||
# - name: authentik-proxy-provider
|
||||
# namespace: traefik
|
||||
middlewares:
|
||||
- name: authentik-proxy-provider
|
||||
namespace: traefik
|
||||
kind: Rule
|
||||
services:
|
||||
- name: redlib
|
||||
port: 8082
|
||||
# - match: Host(`redlib.durp.info`) && PathPrefix(`/outpost.goauthentik.io`)
|
||||
# kind: Rule
|
||||
# services:
|
||||
# - name: ak-outpost-master-embedded-outpost
|
||||
# namespace: authentik
|
||||
# port: 9000
|
||||
- match: Host(`redlib.durp.info`) && PathPrefix(`/outpost.goauthentik.io`)
|
||||
kind: Rule
|
||||
services:
|
||||
- name: ak-outpost-master-embedded-outpost
|
||||
namespace: authentik
|
||||
port: 9000
|
||||
tls:
|
||||
secretName: redlib-tls
|
||||
|
||||
|
||||
@@ -22,3 +22,26 @@ spec:
|
||||
syncOptions:
|
||||
- CreateNamespace=true
|
||||
|
||||
---
|
||||
|
||||
apiVersion: argoproj.io/v1alpha1
|
||||
kind: Application
|
||||
metadata:
|
||||
name: authentik-dmz
|
||||
namespace: argocd
|
||||
spec:
|
||||
project: default
|
||||
source:
|
||||
repoURL: https://gitlab.com/developerdurp/homelab.git
|
||||
targetRevision: main
|
||||
path: dmz/authentik
|
||||
destination:
|
||||
namespace: authentik
|
||||
name: in-cluster
|
||||
syncPolicy:
|
||||
automated:
|
||||
prune: true
|
||||
selfHeal: true
|
||||
syncOptions:
|
||||
- CreateNamespace=true
|
||||
|
||||
|
||||
Reference in New Issue
Block a user