vynil/domain
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Sébastien Huss
2024-02-06 13:50:15 +01:00
parent eb066bf770
commit ac5ac11571
9 changed files with 153 additions and 152 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
share/authentik/apps_v1_Deployment_authentik-server.yaml
View File

@@ -4,10 +4,10 @@ kind: Deployment
metadata:
name: authentik-server
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "server"
spec:
@@ -24,16 +24,16 @@ spec:
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/component: "server"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
annotations:
goauthentik.io/config-checksum: 1beef732e07ae88db4d75233936272af195329398ffec096097feae528030fb0
goauthentik.io/config-checksum: 92e0692364c90a8b3c4cb0bf6b95463d3dd5910bb3b3a830679ef1e94856a1c1
spec:
enableServiceLinks: true
securityContext:
{}
containers:
- name: authentik
image: "ghcr.io/goauthentik/server:2023.10.6"
image: "ghcr.io/goauthentik/server:2023.10.7"
imagePullPolicy: "IfNotPresent"
args: ["server"]
env:

10
share/authentik/apps_v1_Deployment_authentik-worker.yaml
View File

@@ -4,10 +4,10 @@ kind: Deployment
metadata:
name: authentik-worker
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "worker"
spec:
@@ -24,9 +24,9 @@ spec:
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/component: "worker"
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
annotations:
goauthentik.io/config-checksum: 1beef732e07ae88db4d75233936272af195329398ffec096097feae528030fb0
goauthentik.io/config-checksum: 92e0692364c90a8b3c4cb0bf6b95463d3dd5910bb3b3a830679ef1e94856a1c1
spec:
serviceAccountName: authentik
enableServiceLinks: true
@@ -34,7 +34,7 @@ spec:
{}
containers:
- name: authentik
image: "ghcr.io/goauthentik/server:2023.10.6"
image: "ghcr.io/goauthentik/server:2023.10.7"
imagePullPolicy: "IfNotPresent"
args: ["worker"]
env:

4
share/authentik/autoscaling_v2_HorizontalPodAutoscaler_authentik-server.yaml
View File

@@ -4,10 +4,10 @@ kind: HorizontalPodAutoscaler
metadata:
name: authentik-server
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "server"
spec:

4
share/authentik/autoscaling_v2_HorizontalPodAutoscaler_authentik-worker.yaml
View File

@@ -4,10 +4,10 @@ kind: HorizontalPodAutoscaler
metadata:
name: authentik-worker
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/component: "worker"
spec:

264
share/authentik/index.yaml
View File

@@ -6,20 +6,15 @@ metadata:
name: authentik
description: authentik is an open-source Identity Provider focused on flexibility and versatility
options:
domain_name:
default: your_company.com
sub_domain:
default: auth
examples:
- your_company.com
- auth
type: string
issuer:
default: letsencrypt-prod
geoip:
default: /geoip/GeoLite2-City.mmdb
examples:
- letsencrypt-prod
type: string
loglevel:
default: info
examples:
- info
- /geoip/GeoLite2-City.mmdb
type: string
admin:
default:
@@ -31,6 +26,132 @@ options:
default: auth-admin
type: string
type: object
loglevel:
default: info
examples:
- info
type: string
error_reporting:
default:
enabled: false
environment: k8s
send_pii: false
examples:
- enabled: false
environment: k8s
send_pii: false
properties:
enabled:
default: false
type: boolean
environment:
default: k8s
type: string
send_pii:
default: false
type: boolean
type: object
email:
default:
port: 587
timeout: 30
use_ssl: false
use_tls: false
examples:
- port: 587
timeout: 30
use_ssl: false
use_tls: false
properties:
port:
default: 587
type: integer
timeout:
default: 30
type: integer
use_ssl:
default: false
type: boolean
use_tls:
default: false
type: boolean
type: object
redis:
default:
exporter:
enabled: true
examples:
- exporter:
enabled: true
properties:
exporter:
default:
enabled: true
properties:
enabled:
default: true
type: boolean
type: object
type: object
storage:
default:
postgres:
size: 8Gi
redis:
size: 8Gi
examples:
- postgres:
size: 8Gi
redis:
size: 8Gi
properties:
postgres:
default:
size: 8Gi
properties:
size:
default: 8Gi
type: string
type: object
redis:
default:
size: 8Gi
properties:
size:
default: 8Gi
type: string
type: object
type: object
issuer:
default: letsencrypt-prod
examples:
- letsencrypt-prod
type: string
ingress_class:
default: traefik
examples:
- traefik
type: string
domain:
default: your-company
examples:
- your-company
type: string
postgres:
default:
replicas: 1
examples:
- replicas: 1
properties:
replicas:
default: 1
type: integer
type: object
domain_name:
default: your_company.com
examples:
- your_company.com
type: string
images:
default:
app:
@@ -168,95 +289,6 @@ options:
type: string
type: object
type: object
postgres:
default:
replicas: 1
examples:
- replicas: 1
properties:
replicas:
default: 1
type: integer
type: object
domain:
default: your-company
examples:
- your-company
type: string
storage:
default:
postgres:
size: 8Gi
redis:
size: 8Gi
examples:
- postgres:
size: 8Gi
redis:
size: 8Gi
properties:
postgres:
default:
size: 8Gi
properties:
size:
default: 8Gi
type: string
type: object
redis:
default:
size: 8Gi
properties:
size:
default: 8Gi
type: string
type: object
type: object
email:
default:
port: 587
timeout: 30
use_ssl: false
use_tls: false
examples:
- port: 587
timeout: 30
use_ssl: false
use_tls: false
properties:
port:
default: 587
type: integer
timeout:
default: 30
type: integer
use_ssl:
default: false
type: boolean
use_tls:
default: false
type: boolean
type: object
error_reporting:
default:
enabled: false
environment: k8s
send_pii: false
examples:
- enabled: false
environment: k8s
send_pii: false
properties:
enabled:
default: false
type: boolean
environment:
default: k8s
type: string
send_pii:
default: false
type: boolean
type: object
backups:
default:
enable: false
@@ -316,38 +348,6 @@ options:
default: false
type: boolean
type: object
ingress_class:
default: traefik
examples:
- traefik
type: string
redis:
default:
exporter:
enabled: true
examples:
- exporter:
enabled: true
properties:
exporter:
default:
enabled: true
properties:
enabled:
default: true
type: boolean
type: object
type: object
sub_domain:
default: auth
examples:
- auth
type: string
geoip:
default: /geoip/GeoLite2-City.mmdb
examples:
- /geoip/GeoLite2-City.mmdb
type: string
dependencies:
- dist: null
category: core

4
share/authentik/monitoring.coreos.com_v1_PrometheusRule_authentik.yaml
View File

@@ -4,10 +4,10 @@ kind: PrometheusRule
metadata:
name: authentik
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
spec:
groups:

4
share/authentik/monitoring.coreos.com_v1_ServiceMonitor_authentik.yaml
View File

@@ -4,10 +4,10 @@ kind: ServiceMonitor
metadata:
name: authentik
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
spec:
endpoints:

1
share/authentik/presentation.tf
View File

@@ -60,6 +60,7 @@ module "ingress" {
dns_names = local.dns_names
middlewares = [kubectl_manifest.gitlab_userinfo.name,kubectl_manifest.gitlab_authorize.name,kubectl_manifest.gitlab_token.name]
services = [local.service]
create_redirect = false
providers = {
kubectl = kubectl
}

4
share/authentik/v1_Service_authentik.yaml
View File

@@ -4,10 +4,10 @@ kind: Service
metadata:
name: authentik
labels:
helm.sh/chart: authentik-2023.10.6
helm.sh/chart: authentik-2023.10.7
app.kubernetes.io/name: authentik
app.kubernetes.io/instance: authentik
app.kubernetes.io/version: "2023.10.6"
app.kubernetes.io/version: "2023.10.7"
app.kubernetes.io/managed-by: Helm
spec:
type: ClusterIP