Patch in authelia access rules
This commit is contained in:
parent
264a70b5b0
commit
b4073dfef7
GPG Key ID:
FA5F485356B0D2D4
|
|
@ -72,6 +72,6 @@ spec:
|
|||
|
||||
access_control:
|
||||
rules:
|
||||
- domain: traefik.${domain}
|
||||
policy: one_factor
|
||||
subject: "group:lldap_admin"
|
||||
# Deny by default, mainly a placeholder to allow patching in other rules
|
||||
- domain: "*"
|
||||
policy: deny
|
||||
|
|
|
|||
|
|
@ -1,7 +1,9 @@
|
|||
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||
kind: Kustomization
|
||||
resources:
|
||||
- ./traefik-dashboard
|
||||
- ./lldap
|
||||
- ./authelia
|
||||
- ./whoami.yaml
|
||||
|
||||
components:
|
||||
- ./traefik-dashboard
|
||||
|
|
|
|||
6
apps/traefik-dashboard/access.yaml
Normal file
6
apps/traefik-dashboard/access.yaml
Normal file
|
|
@ -0,0 +1,6 @@
|
|||
- op: add
|
||||
path: /spec/values/configMap/access_control/rules/0
|
||||
value:
|
||||
domain: traefik.${domain}
|
||||
policy: one_factor
|
||||
subject: "group:lldap_admin"
|
||||
|
|
@ -1,4 +1,10 @@
|
|||
apiVersion: kustomize.config.k8s.io/v1beta1
|
||||
kind: Kustomization
|
||||
apiVersion: kustomize.config.k8s.io/v1alpha1
|
||||
kind: Component
|
||||
resources:
|
||||
- ingress.yaml
|
||||
patches:
|
||||
- target:
|
||||
kind: HelmRelease
|
||||
name: authelia
|
||||
namespace: authelia
|
||||
path: access.yaml
|
||||
|
|
|
|||
Loading…
Reference in New Issue
Block a user