vynil/domain
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2023-08-29 11:34:06 +02:00
parent e80a99b7a8
commit 705fce977d
3 changed files with 71 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

98
share/wildduck/index.yaml
View File

@@ -11,59 +11,11 @@ options:
examples:
- letsencrypt-prod
type: string
domain:
default: your-company
examples:
- your-company
type: string
redis:
default:
exporter:
enabled: true
image: quay.io/opstree/redis-exporter:v1.44.0
image: quay.io/opstree/redis:v7.0.5
storage: 2Gi
examples:
- exporter:
enabled: true
image: quay.io/opstree/redis-exporter:v1.44.0
image: quay.io/opstree/redis:v7.0.5
storage: 2Gi
properties:
exporter:
default:
enabled: true
image: quay.io/opstree/redis-exporter:v1.44.0
properties:
enabled:
default: true
type: boolean
image:
default: quay.io/opstree/redis-exporter:v1.44.0
type: string
type: object
image:
default: quay.io/opstree/redis:v7.0.5
type: string
storage:
default: 2Gi
type: string
type: object
additional-domains:
default: []
items:
type: string
type: array
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
sub-domain:
default: mail
examples:
- mail
type: string
backups:
default:
enable: false
@@ -94,6 +46,11 @@ options:
default: backup-settings
type: string
type: object
domain-name:
default: your_company.com
examples:
- your_company.com
type: string
ingress-class:
default: traefik
examples:
@@ -308,6 +265,49 @@ options:
type: string
type: object
type: object
domain:
default: your-company
examples:
- your-company
type: string
sub-domain:
default: mail
examples:
- mail
type: string
redis:
default:
exporter:
enabled: true
image: quay.io/opstree/redis-exporter:v1.44.0
image: quay.io/opstree/redis:v7.0.5
storage: 2Gi
examples:
- exporter:
enabled: true
image: quay.io/opstree/redis-exporter:v1.44.0
image: quay.io/opstree/redis:v7.0.5
storage: 2Gi
properties:
exporter:
default:
enabled: true
image: quay.io/opstree/redis-exporter:v1.44.0
properties:
enabled:
default: true
type: boolean
image:
default: quay.io/opstree/redis-exporter:v1.44.0
type: string
type: object
image:
default: quay.io/opstree/redis:v7.0.5
type: string
storage:
default: 2Gi
type: string
type: object
dependencies:
- dist: null
category: dbo
@@ -323,6 +323,6 @@ providers:
authentik: true
kubectl: true
postgresql: null
restapi: null
restapi: true
http: null
tfaddtype: null

19
share/wildduck/scim.tf
View File

@@ -13,3 +13,22 @@ resource "authentik_provider_scim" "scim" {
property_mappings = [data.authentik_property_mapping_scim.user.id]
property_mappings_group = [data.authentik_property_mapping_scim.group.id]
}
provider "restapi" {
uri = "http://authentik.${var.domain}-auth.svc/api/v3/"
headers = local.request_headers
create_method = "PATCH"
update_method = "PATCH"
destroy_method = "PATCH"
write_returns_object = true
id_attribute = "name"
}
resource "restapi_object" "ldap_outpost_binding" {
path = "/providers/scim/${authentik_provider_scim.scim.id}/"
data = jsonencode({
name = authentik_provider_scim.scim.name
exclude_users_service_account = true
filter_group = authentik_group.groups.id
})
}

6
share/wildduck/scimgateway.tf
View File

@@ -57,7 +57,7 @@ resource "kubectl_manifest" "scimgateway_deploy" {
- name: "WILDDUCK_DOMAIN"
value: "${var.domain-name}"
- name: "WILDDUCK_API"
value: "${var.instance}-wildduck-api.${var.namespace}.svc"
value: "http://${var.instance}-wildduck-api.${var.namespace}.svc"
- name: SEED
valueFrom:
secretKeyRef:
@@ -67,12 +67,12 @@ resource "kubectl_manifest" "scimgateway_deploy" {
valueFrom:
secretKeyRef:
name: "${var.instance}"
key: access
key: authentik
- name: WILDDUCK_TOKEN
valueFrom:
secretKeyRef:
name: "${var.instance}"
key: authentik
key: access
- name: WILDDUCK_INITIAL_PASSWD
valueFrom:
secretKeyRef: