Added authelia

2024-11-18 01:23:52 +01:00 · 2024-11-18 01:23:52 +01:00 · 5ad72c4b0f
commit 5ad72c4b0f
parent 6a86c3b7af
8 changed files with 82 additions and 7 deletions
--- a/apps/authelia/kustomization.yaml
+++ b/apps/authelia/kustomization.yaml
@ -0,0 +1,11 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+namespace: authelia
+resources:
+  - ./namespace.yaml
+  - ./repository.yaml
+  - ./release.yaml
+
+components:
+  - ../../common/postgres
+  - ../../common/dragonflydb
--- a/apps/authelia/namespace.yaml
+++ b/apps/authelia/namespace.yaml
@ -0,0 +1,4 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: authelia
--- a/apps/authelia/release.yaml
+++ b/apps/authelia/release.yaml
@ -0,0 +1,55 @@
+apiVersion: helm.toolkit.fluxcd.io/v2
+kind: HelmRelease
+metadata:
+  name: authelia
+spec:
+  chart:
+    spec:
+      chart: authelia
+      reconcileStrategy: ChartVersion
+      sourceRef:
+        kind: HelmRepository
+        name: authelia
+      version: 0.9.9
+  interval: 15m
+  values:
+    ingress:
+      enabled: true
+      tls:
+        enabled: true
+        secret: huizinga-dev-tls
+      traefikCRD:
+        enabled: true
+        entryPoints:
+          - websecure
+    configMap:
+      authentication_backend:
+        ldap:
+          enabled: true
+          implementation: custom
+          address: ldap://lldap.lldap.svc.cluster.local:3890
+          base_dn: dc=huizinga,dc=dev
+          additional_users_dn: ou=people
+          users_filter: "(&({username_attribute}={input})(objectClass=person))"
+          additional_groups_dn: ou=groups
+          groups_filter: "(member={dn})"
+          attributes:
+            display_name: displayName
+            username: uid
+            group_name: cn
+            mail: mail
+          user: uid=authelia,ou=people,dc=huizinga,dc=dev
+          password:
+            value: "JustATest"
+      session:
+        cookies:
+          - subdomain: login
+            domain: huizinga.dev
+
+      # Just for testing
+      storage:
+        local:
+          enabled: true
+      notifier:
+        filesystem:
+          enabled: true
--- a/apps/authelia/repository.yaml
+++ b/apps/authelia/repository.yaml
@ -0,0 +1,7 @@
+apiVersion: source.toolkit.fluxcd.io/v1
+kind: HelmRepository
+metadata:
+  name: authelia
+spec:
+  interval: 15m
+  url: https://charts.authelia.com
--- a/apps/kustomization.yaml
+++ b/apps/kustomization.yaml
@ -3,4 +3,5 @@ kind: Kustomization
 resources:
  - ./traefik-dashboard
  - ./lldap
+  - ./authelia
  - ./whoami.yaml
--- a/infrastructure/configs/dragonflydb.yaml
+++ b/infrastructure/configs/dragonflydb.yaml
@ -1,15 +1,9 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: dragonflydb
---
 apiVersion: dragonflydb.io/v1alpha1
 kind: Dragonfly
 metadata:
  labels:
    app: dragonflydb
  name: dragonflydb
-  namespace: dragonflydb
 spec:
  replicas: 1
  resources:
--- a/common/dragonflydb/kustomization.yaml
+++ b/common/dragonflydb/kustomization.yaml
@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1alpha1
+kind: Component
+resources:
+  - ./database.yaml
--- a/infrastructure/configs/kustomization.yaml
+++ b/infrastructure/configs/kustomization.yaml
@ -8,4 +8,3 @@ resources:

  - ./akri-devices.yaml
  - ./intel-devices.yaml
-  - ./dragonflydb.yaml