vynil/domain
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2024-01-25 17:43:46 +01:00
parent e066715b9b
commit 0727fca591
124 changed files with 1848 additions and 1796 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
share/authentik/apps_v1_Deployment_authentik-server.yaml
View File

@@ -4,13 +4,15 @@ kind: Deployment
metadata:
name: authentik-server
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "server"
spec:
strategy:
{}
selector:
matchLabels:
app.kubernetes.io/name: authentik
@@ -22,16 +24,16 @@ spec:
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/component: "server"
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
annotations:
goauthentik.io/config-checksum: 08cc036af634e14e21493747fd10c37a9e31a9ed71f8e668884f7dfc86a936bd
goauthentik.io/config-checksum: 1beef732e07ae88db4d75233936272af195329398ffec096097feae528030fb0
spec:
enableServiceLinks: true
securityContext:
{}
containers:
- name: authentik
image: "ghcr.io/goauthentik/server:2023.8.3"
image: "ghcr.io/goauthentik/server:2023.10.6"
imagePullPolicy: "IfNotPresent"
args: ["server"]
env:

12
share/authentik/apps_v1_Deployment_authentik-worker.yaml
View File

@@ -4,13 +4,15 @@ kind: Deployment
metadata:
name: authentik-worker
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "worker"
spec:
strategy:
{}
selector:
matchLabels:
app.kubernetes.io/name: authentik
@@ -22,9 +24,9 @@ spec:
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/component: "worker"
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
annotations:
goauthentik.io/config-checksum: 08cc036af634e14e21493747fd10c37a9e31a9ed71f8e668884f7dfc86a936bd
goauthentik.io/config-checksum: 1beef732e07ae88db4d75233936272af195329398ffec096097feae528030fb0
spec:
serviceAccountName: authentik
enableServiceLinks: true
@@ -32,7 +34,7 @@ spec:
{}
containers:
- name: authentik
image: "ghcr.io/goauthentik/server:2023.8.3"
image: "ghcr.io/goauthentik/server:2023.10.6"
imagePullPolicy: "IfNotPresent"
args: ["worker"]
env:

4
share/authentik/autoscaling_v2_HorizontalPodAutoscaler_authentik-server.yaml
View File

@@ -4,10 +4,10 @@ kind: HorizontalPodAutoscaler
metadata:
name: authentik-server
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "server"
spec:

4
share/authentik/autoscaling_v2_HorizontalPodAutoscaler_authentik-worker.yaml
View File

@@ -4,10 +4,10 @@ kind: HorizontalPodAutoscaler
metadata:
name: authentik-worker
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "worker"
spec:

2
share/authentik/datas.tf
View File

@@ -1,4 +1,6 @@
locals {
authentik_url = "http://authentik.${var.domain}-auth.svc"
authentik_token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
common-labels = {
"vynil.solidite.fr/owner-name" = var.instance
"vynil.solidite.fr/owner-namespace" = var.namespace

140
share/authentik/index.yaml
View File

@@ -6,51 +6,11 @@ metadata:
name: authentik
description: authentik is an open-source Identity Provider focused on flexibility and versatility
options:
email:
default:
port: 587
timeout: 30
use_ssl: false
use_tls: false
examples:
- port: 587
timeout: 30
use_ssl: false
use_tls: false
properties:
port:
default: 587
type: integer
timeout:
default: 30
type: integer
use_ssl:
default: false
type: boolean
use_tls:
default: false
type: boolean
type: object
admin:
default:
email: auth-admin
examples:
- email: auth-admin
properties:
email:
default: auth-admin
type: string
type: object
domain:
default: your-company
examples:
- your-company
type: string
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
backups:
default:
enable: false
@@ -130,16 +90,26 @@ options:
default: false
type: boolean
type: object
sub-domain:
default: auth
postgres:
default:
replicas: 1
storage: 8Gi
version: '14'
examples:
- auth
type: string
loglevel:
default: info
examples:
- info
type: string
- replicas: 1
storage: 8Gi
version: '14'
properties:
replicas:
default: 1
type: integer
storage:
default: 8Gi
type: string
version:
default: '14'
type: string
type: object
issuer:
default: letsencrypt-prod
examples:
@@ -183,11 +153,6 @@ options:
default: 8Gi
type: string
type: object
geoip:
default: /geoip/GeoLite2-City.mmdb
examples:
- /geoip/GeoLite2-City.mmdb
type: string
image:
default:
project: goauthentik
@@ -218,25 +183,60 @@ options:
default: 2023.8.3
type: string
type: object
postgres:
default:
replicas: 1
storage: 8Gi
version: '14'
domain-name:
default: your_company.com
examples:
- replicas: 1
storage: 8Gi
version: '14'
- your_company.com
type: string
admin:
default:
email: auth-admin
examples:
- email: auth-admin
properties:
replicas:
default: 1
email:
default: auth-admin
type: string
type: object
sub-domain:
default: auth
examples:
- auth
type: string
geoip:
default: /geoip/GeoLite2-City.mmdb
examples:
- /geoip/GeoLite2-City.mmdb
type: string
loglevel:
default: info
examples:
- info
type: string
email:
default:
port: 587
timeout: 30
use_ssl: false
use_tls: false
examples:
- port: 587
timeout: 30
use_ssl: false
use_tls: false
properties:
port:
default: 587
type: integer
storage:
default: 8Gi
type: string
version:
default: '14'
type: string
timeout:
default: 30
type: integer
use_ssl:
default: false
type: boolean
use_tls:
default: false
type: boolean
type: object
dependencies:
- dist: null

4
share/authentik/monitoring.coreos.com_v1_PrometheusRule_authentik.yaml
View File

@@ -4,10 +4,10 @@ kind: PrometheusRule
metadata:
name: authentik
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
spec:
groups:

4
share/authentik/monitoring.coreos.com_v1_ServiceMonitor_authentik.yaml
View File

@@ -4,10 +4,10 @@ kind: ServiceMonitor
metadata:
name: authentik
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
spec:
endpoints:

4
share/authentik/v1_Service_authentik.yaml
View File

@@ -4,10 +4,10 @@ kind: Service
metadata:
name: authentik
labels:
helm.sh/chart: authentik-2023.8.3
helm.sh/chart: authentik-2023.10.6
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.8.3"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/managed-by: Helm
spec:
type: ClusterIP