data "kubernetes_secret_v1" "authentik" { metadata { name = "authentik" namespace = "${var.domain}-auth" } } locals { authentik_url = "http://authentik.${var.domain}-auth.svc" authentik_token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"] dns_name = "${var.sub_domain}.${var.domain_name}" dns_names = [local.dns_name] app_name = var.component == var.instance ? var.instance : format("%s-%s", var.component, var.instance) icon = "" request_headers = { "Content-Type" = "application/json" Authorization = "Bearer ${data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]}" } } module "service" { source = "git::https://git.solidite.fr/vynil/kydah-modules.git//service?ref=0.3.0" component = var.component instance = var.instance namespace = var.namespace labels = local.wp_labels targets = ["http"] providers = { kubectl = kubectl } } module "ingress" { source = "git::https://git.solidite.fr/vynil/kydah-modules.git//ingress?ref=0.3.0" component = "" instance = var.instance namespace = var.namespace issuer = var.issuer ingress_class = var.ingress_class labels = local.common_labels dns_names = local.dns_names middlewares = [] services = [module.service.default_definition] providers = { kubectl = kubectl } } module "application" { source = "git::https://git.solidite.fr/vynil/kydah-modules.git//application?ref=0.3.0" component = var.component instance = var.instance app_group = var.app_group dns_name = "${local.dns_name}/wp-admin/" icon = local.icon protocol_provider = module.oauth2.provider-id providers = { authentik = authentik } } module "oauth2" { source = "git::https://git.solidite.fr/vynil/kydah-modules.git//oauth2?ref=0.3.0" component = var.component instance = var.instance namespace = var.namespace domain = var.domain labels = local.common_labels dns_name = local.dns_name redirect_path = "" providers = { kubernetes = kubernetes kubectl = kubectl authentik = authentik } }