feat: Added authelia

2025-12-22 02:50:14 +01:00
parent ff11a99999
commit ee4c09abf3
23 changed files with 313 additions and 0 deletions
--- a/apps/authelia/base/values.yaml
+++ b/apps/authelia/base/values.yaml
@@ -0,0 +1,61 @@
+pod:
+  kind: Deployment
+  replicas: 2
+ingress:
+  enabled: true
+  gatewayAPI:
+    enabled: true
+    parentRefs:
+      - name: gateway
+        namespace: default
+
+secret:
+  additionalSecrets:
+    db-app:
+      key: db-app
+    authelia-lldap-credentials:
+      key: authelia-lldap-credentials
+
+configMap:
+  authentication_backend:
+    ldap:
+      enabled: true
+      implementation: lldap
+      address: ldap://lldap.lldap.svc.cluster.local:3890
+      base_dn: dc=huizinga,dc=dev
+      additional_users_dn: ou=people
+      users_filter: "(&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))"
+      additional_groups_dn: ou=groups
+      groups_filter: "(member={dn})"
+      attributes:
+        display_name: displayName
+        username: uid
+        group_name: cn
+        mail: mail
+      user: uid=authelia.authelia,ou=people,dc=huizinga,dc=dev
+      password:
+        secret_name: authelia-lldap-credentials
+        path: password
+
+  session:
+    redis:
+      enabled: true
+      host: dragonfly.authelia
+
+  storage:
+    postgres:
+      enabled: true
+      address: tcp://db-rw.authelia:5432
+      database: app
+      username: app
+      password:
+        secret_name: db-app
+        path: password
+
+  notifier:
+    filesystem:
+      enabled: true
+
+  # access_control:
+  #   secret:
+  #     existingSecret: authelia-acl