mthomson/fleet-infra
1
0
Fork 0
mirror of https://github.com/michaelthomson0797/fleet-infra.git synced 2026-02-04 21:09:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
7b117a2200de5b03fb01e8184f115afdf4994967
fleet-infra/authentik/helmrelease-authentik.yaml
Michael Thomson 1a753be437 authentik outpost tls 
Signed-off-by: Michael Thomson <michael@michaelthomson.dev>
2024-10-09 12:42:39 -04:00

80 lines
2.3 KiB
YAML
Raw Blame History

apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease
metadata:
name: authentik
namespace: authentik
spec:
chart:
spec:
chart: authentik
version: 2024.8.3
sourceRef:
kind: HelmRepository
name: authentik
namespace: flux-system
interval: 15m
timeout: 5m
releaseName: authentik
values:
global:
env:
- name: AUTHENTIK_SECRET_KEY
valueFrom:
secretKeyRef:
name: authentik-secret-key
key: AUTHENTIK_SECRET_KEY
- name: AUTHENTIK_POSTGRESQL__PASSWORD
valueFrom:
secretKeyRef:
name: authentik-postgresql-password
key: AUTHENTIK_POSTGRESQL__PASSWORD
- name: POSTGRES_PASSWORD
valueFrom:
secretKeyRef:
name: authentik-postgresql-password
key: AUTHENTIK_POSTGRESQL__PASSWORD
- name: AUTHENTIK_EMAIL__PASSWORD
valueFrom:
secretKeyRef:
name: authentik-email-password
key: AUTHENTIK_EMAIL__PASSWORD
authentik:
outposts:
kubernetes_ingress_secret_name: letsencrypt-wildcard-cert-michaelthomson.dev
kubernetes_ingress_annotations:
traefik.ingress.kubernetes.io/router.tls: "true"
traefik.ingress.kubernetes.io/router.entrypoints: websecure
email:
host: mail.michaelthomson.dev
port: 465
username: server@michaelthomson.dev
use_tls: true
from: "Michael's Server <server@michaelthomson.dev>"
server:
ingress:
enabled: true
ingressClassName: traefik
annotations:
traefik.ingress.kubernetes.io/router.tls: "true"
traefik.ingress.kubernetes.io/router.entrypoints: websecure
hosts:
- authentik.michaelthomson.dev
tls:
- secretName: letsencrypt-wildcard-cert-michaelthomson.dev
hosts:
- authentik.michaelthomson.dev
postgresql:
enabled: true
auth:
existingSecret: authentik-postgresql-password
secretKeys:
adminPasswordKey: AUTHENTIK_POSTGRESQL__PASSWORD
userPasswordKey: AUTHENTIK_POSTGRESQL__PASSWORD
replicationPasswordKey: AUTHENTIK_POSTGRESQL__PASSWORD
redis:
enabled: true
Reference in New Issue View Git Blame Copy Permalink