feat(kube-web-view): enable OAuth2 #164

martinohmann · 2023-12-29T11:44:47Z

No description provided.

github-actions · 2023-12-29T11:45:37Z

--- kubernetes/apps/default/authelia/app Kustomization: flux-system/authelia ConfigMap: default/authelia

+++ kubernetes/apps/default/authelia/app Kustomization: flux-system/authelia ConfigMap: default/authelia

@@ -95,12 +95,21 @@

             public: false
             authorization_policy: two_factor
             pre_configured_consent_duration: 1y
             scopes: ["openid", "profile", "groups", "email"]
             redirect_uris: ["https://grafana.18b.haus/login/generic_oauth"]
             userinfo_signed_response_alg: none
+          - id: kube-web-view
+            description: Kubernetes Web View
+            secret: "${KUBE_WEB_VIEW_OIDC_CLIENT_SECRET_DIGEST}"
+            public: false
+            authorization_policy: two_factor
+            pre_configured_consent_duration: 1y
+            scopes: ["openid", "profile", "groups", "email"]
+            redirect_uris: ["https://kube-web-view.18b.haus/oauth2/callback"]
+            userinfo_signed_response_alg: none
 kind: ConfigMap
 metadata:
   annotations:
     kustomize.toolkit.fluxcd.io/substitute: disabled
   labels:
     app.kubernetes.io/name: authelia
--- kubernetes/apps Kustomization: flux-system/cluster-apps Kustomization: flux-system/kube-web-view

+++ kubernetes/apps Kustomization: flux-system/cluster-apps Kustomization: flux-system/kube-web-view

@@ -5,12 +5,15 @@

   labels:
     kustomize.toolkit.fluxcd.io/name: cluster-apps
     kustomize.toolkit.fluxcd.io/namespace: flux-system
   name: kube-web-view
   namespace: flux-system
 spec:
+  commonMetadata:
+    labels:
+      app.kubernetes.io/name: kube-web-view
   decryption:
     provider: sops
     secretRef:
       name: sops-age
   interval: 30m
   path: ./kubernetes/apps/monitoring/kube-web-view/app
@@ -22,9 +25,10 @@

       name: cluster-secrets
   prune: true
   retryInterval: 1m
   sourceRef:
     kind: GitRepository
     name: home-kubernetes
+  targetNamespace: monitoring
   timeout: 5m
   wait: true
 
--- kubernetes/apps/monitoring/kube-web-view/app Kustomization: flux-system/kube-web-view Ingress: monitoring/kube-web-view

+++ kubernetes/apps/monitoring/kube-web-view/app Kustomization: flux-system/kube-web-view Ingress: monitoring/kube-web-view

@@ -3,12 +3,13 @@

 kind: Ingress
 metadata:
   annotations:
     hajimari.io/group: monitoring
     hajimari.io/icon: simple-icons:kubernetes
   labels:
+    app.kubernetes.io/name: kube-web-view
     kustomize.toolkit.fluxcd.io/name: kube-web-view
     kustomize.toolkit.fluxcd.io/namespace: flux-system
   name: kube-web-view
   namespace: monitoring
 spec:
   ingressClassName: internal

feat(kube-web-view): enable OAuth2

a72f360

github-actions bot added the area/kubernetes Changes made in the kubernetes directory label Dec 29, 2023

martinohmann merged commit 861ea1c into main Dec 29, 2023
4 checks passed

martinohmann deleted the kube-web-view-oauth branch December 29, 2023 11:48

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(kube-web-view): enable OAuth2 #164

feat(kube-web-view): enable OAuth2 #164

martinohmann commented Dec 29, 2023

github-actions bot commented Dec 29, 2023

feat(kube-web-view): enable OAuth2 #164

feat(kube-web-view): enable OAuth2 #164

Conversation

martinohmann commented Dec 29, 2023

github-actions bot commented Dec 29, 2023