Dreaded_X
c939bbea88
Some checks failed
kustomization/topolvm/3a682516 dependency not ready
kustomization/traefik/3a682516 dependency not ready
kustomization/cnpg/3a682516 dependency not ready
kustomization/letsencrypt/3a682516 dependency not ready
kustomization/kyverno-policies/3a682516 dependency not ready
kustomization/lldap/3a682516 dependency not ready
kustomization/authelia/3a682516 dependency not ready
kustomization/rook-ceph-cluster/3a682516 dependency not ready
kustomization/apps/3a682516 dependency not ready
kustomization/kube-vip/3a682516 dependency not ready
kustomization/traefik-middleware/3a682516 dependency not ready
kustomization/node-feature-discovery/3a682516 health check failed
kustomization/node-feature-discovery-rules/3a682516 reconciliation succeeded
kustomization/flux-system/3a682516 reconciliation succeeded
kustomization/kyverno/3a682516 artifact failed
kustomization/cert-manager/3a682516 reconciliation succeeded
kustomization/akri/3a682516 reconciliation succeeded
kustomization/velero/3a682516 reconciliation succeeded
kustomization/rook-ceph/3a682516 reconciliation failed
70 lines
1.5 KiB
YAML
70 lines
1.5 KiB
YAML
pod:
|
|
kind: Deployment
|
|
replicas: 2
|
|
ingress:
|
|
enabled: true
|
|
tls:
|
|
enabled: true
|
|
secret: ${domain//./-}-tls
|
|
traefikCRD:
|
|
enabled: true
|
|
entryPoints:
|
|
- websecure
|
|
|
|
secret:
|
|
additionalSecrets:
|
|
postgres-app:
|
|
key: postgres-app
|
|
authelia-lldap-credentials:
|
|
key: authelia-lldap-credentials
|
|
|
|
configMap:
|
|
log:
|
|
level: debug
|
|
|
|
authentication_backend:
|
|
ldap:
|
|
enabled: true
|
|
implementation: lldap
|
|
address: ldap://lldap.lldap.svc.cluster.local:3890
|
|
base_dn: dc=huizinga,dc=dev
|
|
additional_users_dn: ou=people
|
|
users_filter: "(&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))"
|
|
additional_groups_dn: ou=groups
|
|
groups_filter: "(member={dn})"
|
|
attributes:
|
|
display_name: displayName
|
|
username: uid
|
|
group_name: cn
|
|
mail: mail
|
|
user: uid=authelia.authelia,ou=people,dc=huizinga,dc=dev
|
|
password:
|
|
secret_name: authelia-lldap-credentials
|
|
path: password
|
|
|
|
session:
|
|
cookies:
|
|
- subdomain: login${subdomain}
|
|
domain: ${topdomain}
|
|
redis:
|
|
enabled: true
|
|
host: dragonflydb.authelia
|
|
|
|
storage:
|
|
postgres:
|
|
enabled: true
|
|
address: tcp://postgres-rw.authelia:5432
|
|
database: app
|
|
username: app
|
|
password:
|
|
secret_name: postgres-app
|
|
path: password
|
|
|
|
notifier:
|
|
filesystem:
|
|
enabled: true
|
|
|
|
access_control:
|
|
secret:
|
|
existingSecret: authelia-acl
|