simonkaiser
/
k8s-kaisers-info
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Activity
Ei kuvausta
137 Commitit
1 Haara
Puu: fc5d461804
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'fc5d461804'
${ noResults }
k8s-kaisers-info/services-kaisers-info/templates/authentik.yaml

authentik.yaml 2.3KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. apiVersion: argoproj.io/v1alpha1

  2. kind: Application

  3. metadata:

  4.   name: "authentik"

  5.   namespace: {{ .Values.spec.namespace }}

  6.   finalizers:

  7.   - resources-finalizer.argocd.argoproj.io

  8. spec:

  9.   destination:

  10.     namespace: "authentik"

  11.     name: {{ .Values.spec.destination.name }}

  12.   project: {{ .Values.spec.project }}

  13.   syncPolicy:

  14.     automated:

  15.       prune: true

  16.       selfHeal: true

  17.   source:

  18.     chart: "authentik"

  19.     repoURL: "https://charts.goauthentik.io"

  20.     targetRevision: "5.2.1"

  21.     helm:

  22.       releaseName: "authentik"

  23.       values: |

  24.         authentik:

  25.           env: {

  26.             AK_ADMIN_PASS: 'SIMON',

  27.             AK_ADMIN_TOKEN: 'SIMON'

  28.           }

  29.           secret_key: "qlfgmSJ8GT/EoE3JsphrM81KzyYqoDYif7u59m/sVL4EQ6MO"

  30.           # This sends anonymous usage-data, stack traces on errors and

  31.           # performance data to sentry.beryju.org, and is fully opt-in

  32.           error_reporting:

  33.             enabled: false

  34.           postgresql:

  35.             password: "ThisIsNotASecurePasswordEither"

  36.           

  37.           email:

  38.             # -- SMTP Server emails are sent from, fully optional

  39.             host: "mail.your-server.de"

  40.             port: 587

  41.             # -- SMTP credentials, when left empty, not authentication will be done

  42.             username: "authentik@kaisers.info"

  43.             # -- SMTP credentials, when left empty, not authentication will be done

  44.             password: "6qL3XdwQUw2UJ75U"

  45.             # -- Enable either use_tls or use_ssl, they can't be enabled at the same time.

  46.             use_tls: true

  47.             # -- Connection timeout

  48.             timeout: 30

  49.             # -- Email from address, can either be in the format "foo@bar.baz" or "authentik <foo@bar.baz>"

  50.             from: "authentik <authentik@kaisers.info>"

  51. 

  52.         ingress:

  53.           enabled: true

  54.           annotations:

  55.             cert-manager.io/cluster-issuer: "letsencrypt-prod"

  56.             traefik.ingress.kubernetes.io/redirect-entry-point: "https"

  57.           hosts:

  58.             - host: "authentik.kaisers.info"

  59.               paths:

  60.                 - path: "/"

  61.                   pathType: "Prefix"

  62.           tls:

  63.             - secretName: "authentik-kaisers-info-tls"

  64.               hosts:

  65.                 - "authentik.kaisers.info"

  66.               

  67. 

  68.         postgresql:

  69.           enabled: true

  70.           postgresqlPassword: "ThisIsNotASecurePasswordEither"

  71.         redis:

  72.           enabled: true