simonkaiser
/
k8s-kaisers-info
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Activity
Ei kuvausta
136 Commitit
1 Haara
Puu: 0473ff48f9
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '0473ff48f9'
${ noResults }
k8s-kaisers-info/services-kaisers-info/templates/authentik.yaml

authentik.yaml 2.3KB
Historia Raaka

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. apiVersion: argoproj.io/v1alpha1

  2. kind: Application

  3. metadata:

  4.   name: "authentik"

  5.   namespace: {{ .Values.spec.namespace }}

  6.   finalizers:

  7.   - resources-finalizer.argocd.argoproj.io

  8. spec:

  9.   destination:

  10.     namespace: "authentik"

  11.     name: {{ .Values.spec.destination.name }}

  12.   project: {{ .Values.spec.project }}

  13.   syncPolicy:

  14.     automated:

  15.       prune: true

  16.       selfHeal: true

  17.   source:

  18.     chart: "authentik"

  19.     repoURL: "https://charts.goauthentik.io"

  20.     targetRevision: "5.2.1"

  21.     helm:

  22.       releaseName: "authentik"

  23.       values: |

  24.         authentik:

  25.           env: {

  26.             AK_ADMIN_PASS: 'SIMON'

  27.           }

  28.           secret_key: "qlfgmSJ8GT/EoE3JsphrM81KzyYqoDYif7u59m/sVL4EQ6MO"

  29.           # This sends anonymous usage-data, stack traces on errors and

  30.           # performance data to sentry.beryju.org, and is fully opt-in

  31.           error_reporting:

  32.             enabled: false

  33.           postgresql:

  34.             password: "ThisIsNotASecurePasswordEither"

  35.           

  36.           email:

  37.             # -- SMTP Server emails are sent from, fully optional

  38.             host: "mail.your-server.de"

  39.             port: 587

  40.             # -- SMTP credentials, when left empty, not authentication will be done

  41.             username: "authentik@kaisers.info"

  42.             # -- SMTP credentials, when left empty, not authentication will be done

  43.             password: "6qL3XdwQUw2UJ75U"

  44.             # -- Enable either use_tls or use_ssl, they can't be enabled at the same time.

  45.             use_tls: true

  46.             # -- Connection timeout

  47.             timeout: 30

  48.             # -- Email from address, can either be in the format "foo@bar.baz" or "authentik <foo@bar.baz>"

  49.             from: "authentik <authentik@kaisers.info>"

  50. 

  51.         ingress:

  52.           enabled: true

  53.           annotations:

  54.             cert-manager.io/cluster-issuer: "letsencrypt-prod"

  55.             traefik.ingress.kubernetes.io/redirect-entry-point: "https"

  56.           hosts:

  57.             - host: "authentik.kaisers.info"

  58.               paths:

  59.                 - path: "/"

  60.                   pathType: "Prefix"

  61.           tls:

  62.             - secretName: "authentik-kaisers-info-tls"

  63.               hosts:

  64.                 - "authentik.kaisers.info"

  65.               

  66. 

  67.         postgresql:

  68.           enabled: true

  69.           postgresqlPassword: "ThisIsNotASecurePasswordEither"

  70.         redis:

  71.           enabled: true