fix

2023-08-29 11:36:15 +02:00
parent 705fce977d
commit 10a1b406fa
3 changed files with 65 additions and 55 deletions
--- a/share/wildduck/scim.tf
+++ b/share/wildduck/scim.tf
@@ -1,3 +1,10 @@
+data "kubernetes_secret_v1" "authentik" {
+  metadata {
+    name = "authentik"
+    namespace = "${var.domain}-auth"
+  }
+}
+
 data "authentik_property_mapping_scim" "user" {
  managed = "goauthentik.io/providers/scim/user"
 }
@@ -14,6 +21,16 @@ resource "authentik_provider_scim" "scim" {
  property_mappings_group = [data.authentik_property_mapping_scim.group.id]
 }

+
+// Work-around missing features in the provider
+locals {
+  authentik-token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
+  request_headers = {
+    "Content-Type"  = "application/json"
+    Authorization   = "Bearer ${local.authentik-token}"
+  }
+}
+
 provider "restapi" {
  uri = "http://authentik.${var.domain}-auth.svc/api/v3/"
  headers = local.request_headers