simonkaiser
/
k8s-kaisers-info
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Нет описания
139 коммитов
1 ветка
Дерево: 68f6dc8a15
веток Теги
${ item.name }
Создать ветку ${ searchTerm }
из '68f6dc8a15'
${ noResults }
k8s-kaisers-info/services-kaisers-info/templates/authentik.yaml

authentik.yaml 2.1KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. apiVersion: argoproj.io/v1alpha1

  2. kind: Application

  3. metadata:

  4.   name: "authentik"

  5.   namespace: {{ .Values.spec.namespace }}

  6.   finalizers:

  7.   - resources-finalizer.argocd.argoproj.io

  8. spec:

  9.   destination:

  10.     namespace: "authentik"

  11.     name: {{ .Values.spec.destination.name }}

  12.   project: {{ .Values.spec.project }}

  13.   syncPolicy:

  14.     automated:

  15.       prune: true

  16.       selfHeal: true

  17.   source:

  18.     chart: "authentik"

  19.     repoURL: "https://charts.goauthentik.io/"

  20.     targetRevision: "2022.6.1"

  21.     helm:

  22.       releaseName: "authentik"

  23.       values: |

  24.         authentik:

  25.           # This sends anonymous usage-data, stack traces on errors and

  26.           # performance data to sentry.beryju.org, and is fully opt-in

  27.           error_reporting:

  28.             enabled: false

  29.           

  30.           email:

  31.             # -- SMTP Server emails are sent from, fully optional

  32.             host: "mail.your-server.de"

  33.             port: 587

  34.             # -- SMTP credentials, when left empty, not authentication will be done

  35.             username: "authentik@kaisers.info"

  36.             # -- Enable either use_tls or use_ssl, they can't be enabled at the same time.

  37.             use_tls: true

  38.             # -- Connection timeout

  39.             timeout: 30

  40.             # -- Email from address, can either be in the format "foo@bar.baz" or "authentik <foo@bar.baz>"

  41.             from: "authentik <authentik@kaisers.info>"

  42.         

  43.         envFrom:

  44.           - secretRef:

  45.               name: 'authentik-kaisers-info-secrets'

  46.         

  47.         valuesFrom:

  48.           - kind: Secret

  49.               name: 'authentik-kaisers-info-postgresql-secrets'

  50. 

  51.         ingress:

  52.           enabled: true

  53.           annotations:

  54.             cert-manager.io/cluster-issuer: "letsencrypt-prod"

  55.             traefik.ingress.kubernetes.io/redirect-entry-point: "https"

  56.           hosts:

  57.             - host: "authentik.kaisers.info"

  58.               paths:

  59.                 - path: "/"

  60.                   pathType: "Prefix"

  61.           tls:

  62.             - secretName: "authentik-kaisers-info-tls"

  63.               hosts:

  64.                 - "authentik.kaisers.info"

  65. 

  66.         postgresql:

  67.           enabled: true

  68.         redis:

  69.           enabled: true