nold/hive-apps
1
0
Fork 0
mirror of https://github.com/nold360/hive-apps synced 2024-09-27 19:08:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

change(argocd): reenabled authentik oidc

Browse source
This commit is contained in:
nold 2022-12-13 14:13:25 +01:00
parent 351d66311b
commit f5c1546766
2 changed files with 20 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
projects/argocd/project.yml
View file

@ -15,7 +15,7 @@ apps:
keys: keys:
- admin.password - admin.password
- server.secretkey - server.secretkey
- oidc.auth0.clientSecret - dex.authentik.clientSecret
- webhook.gogs.secret - webhook.gogs.secret
- name: ca-cert - name: ca-cert
keys: keys:

32
projects/argocd/values/argocd.yaml
View file

@ -111,26 +111,32 @@ server:
oidc.config: | oidc.config: |
name: Authentik name: Authentik
type: oidc
id: authentik
issuer: https://auth.dc/application/o/argocd/ issuer: https://auth.dc/application/o/argocd/
clientID: 0c149045b7b87eb80e41fcdd3e788476472d7316 clientID: 3793eb413f1d568b9e9cf82fd4d8d596b2867ec5
clientSecret: $oidc.auth0.clientSecret clientSecret: $dex.authentik.clientSecret
requestedScopes: ["openid", "profile", "email", "groups"] scopes:
- openid
- profile
- email
- groups
rbacConfig: rbacConfig:
policy.csv: | policy.csv: |
g, ArgoCDAdmins, role:admin g, ArgoCDAdmins, role:admin
# Mount public CA cert # Mount vault CA cert
volumeMounts: [] volumeMounts:
# - name: certificate - name: certificate
# mountPath: /etc/ssl/certs/ca.crt mountPath: /etc/ssl/certs/vault-ca-certificates.crt
# subPath: ca subPath: ca
volumes: [] volumes:
# - name: certificate - name: certificate
# secret: secret:
# secretName: ca-cert secretName: ca-cert
# defaultMode: 420 defaultMode: 420
additionalApplications: [] additionalApplications: []