domain/apps/wordpress/presentation.tf

data "kubernetes_secret_v1" "authentik" {
  metadata {
    name      = "authentik"
    namespace = "${var.domain}-auth"
  }
}

locals {
  authentik_url = "http://authentik.${var.domain}-auth.svc"
  authentik_token = data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]
  dns_name = "${var.sub_domain}.${var.domain_name}"
  dns_names = [local.dns_name]
  app_name = var.component == var.instance ? var.instance : format("%s-%s", var.component, var.instance)
  icon              = ""
  request_headers = {
    "Content-Type"  = "application/json"
    Authorization   = "Bearer ${data.kubernetes_secret_v1.authentik.data["AUTHENTIK_BOOTSTRAP_TOKEN"]}"
  }
}

module "service" {
  source = "git::https://git.solidite.fr/vynil/kydah-modules.git//service?ref=0.3.0"
  component         = var.component
  instance          = var.instance
  namespace         = var.namespace
  labels            = local.wp_labels
  targets           = ["http"]
  providers = {
    kubectl = kubectl
  }
}

module "ingress" {
  source = "git::https://git.solidite.fr/vynil/kydah-modules.git//ingress?ref=0.3.0"
  component         = ""
  instance          = var.instance
  namespace         = var.namespace
  issuer            = var.issuer
  ingress_class     = var.ingress_class
  labels            = local.common_labels
  dns_names         = local.dns_names
  middlewares       = []
  services          = [module.service.default_definition]
  providers = {
    kubectl = kubectl
  }
}

module "application" {
  source = "git::https://git.solidite.fr/vynil/kydah-modules.git//application?ref=0.3.0"
  component         = var.component
  instance          = var.instance
  app_group         = var.app_group
  dns_name          = "${local.dns_name}/wp-admin/"
  icon              = local.icon
  protocol_provider = module.oauth2.provider-id
  providers = {
    authentik = authentik
  }
}

module "oauth2" {
  source = "git::https://git.solidite.fr/vynil/kydah-modules.git//oauth2?ref=0.3.0"
  component         = var.component
  instance          = var.instance
  namespace         = var.namespace
  domain            = var.domain
  labels            = local.common_labels
  dns_name          = local.dns_name
  redirect_path     = ""
  providers = {
    kubernetes = kubernetes
    kubectl = kubectl
    authentik = authentik
  }
}