forked from catalin/fukuops
feat: update authentik chart to 2024.2
This commit is contained in:
parent
e479cedfed
commit
5fa78a2cb0
8 changed files with 76 additions and 76 deletions
|
|
@ -11,7 +11,7 @@ spec:
|
||||||
sources:
|
sources:
|
||||||
- chart: authentik
|
- chart: authentik
|
||||||
repoURL: https://charts.goauthentik.io/
|
repoURL: https://charts.goauthentik.io/
|
||||||
targetRevision: 2023.10.*
|
targetRevision: 2024.2.*
|
||||||
helm:
|
helm:
|
||||||
valuesObject:
|
valuesObject:
|
||||||
authentik:
|
authentik:
|
||||||
|
|
@ -26,7 +26,8 @@ spec:
|
||||||
timeout: 30
|
timeout: 30
|
||||||
from: auth@fukurokuju.dev
|
from: auth@fukurokuju.dev
|
||||||
postgresql:
|
postgresql:
|
||||||
host: 192.168.1.13
|
host: 192.168.1.3
|
||||||
|
port: 55432
|
||||||
name: auth
|
name: auth
|
||||||
user: file:///authentik-creds/pg_username
|
user: file:///authentik-creds/pg_username
|
||||||
password: file:///authentik-creds/pg_password
|
password: file:///authentik-creds/pg_password
|
||||||
|
|
@ -34,6 +35,9 @@ spec:
|
||||||
host: 192.168.1.3
|
host: 192.168.1.3
|
||||||
port: 30036
|
port: 30036
|
||||||
password: file:///authentik-creds/redis_password
|
password: file:///authentik-creds/redis_password
|
||||||
|
error_reporting:
|
||||||
|
enabled: true
|
||||||
|
global:
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
- name: authentik-creds
|
- name: authentik-creds
|
||||||
mountPath: /authentik-creds
|
mountPath: /authentik-creds
|
||||||
|
|
@ -46,37 +50,40 @@ spec:
|
||||||
- name: media
|
- name: media
|
||||||
persistentVolumeClaim:
|
persistentVolumeClaim:
|
||||||
claimName: pvc-authentik-media
|
claimName: pvc-authentik-media
|
||||||
|
server:
|
||||||
autoscaling:
|
autoscaling:
|
||||||
server:
|
|
||||||
enabled: true
|
|
||||||
maxScaling: 3
|
|
||||||
worker:
|
|
||||||
enabled: true
|
enabled: true
|
||||||
|
minReplicas: 1
|
||||||
|
maxReplicas: 3
|
||||||
pdb:
|
pdb:
|
||||||
server:
|
|
||||||
enabled: true
|
enabled: true
|
||||||
maxUnavailable: 2
|
minAvailable: 1
|
||||||
worker:
|
|
||||||
enabled:
|
|
||||||
maxUnavailable: 4
|
|
||||||
service:
|
service:
|
||||||
type: LoadBalancer
|
type: LoadBalancer
|
||||||
port: 9000
|
servicePortHttp: 9000
|
||||||
name: http
|
servicePortHttps: 9443
|
||||||
|
metrics:
|
||||||
|
enabled: true
|
||||||
|
service:
|
||||||
|
type: LoadBalancer
|
||||||
|
serviceMonitor:
|
||||||
|
enabled: true
|
||||||
ingress:
|
ingress:
|
||||||
enabled: true
|
enabled: true
|
||||||
ingressClassName: traefik
|
ingressClassName: traefik
|
||||||
hosts:
|
hosts:
|
||||||
- host: auth.fukurokuju.dev
|
- auth.fukurokuju.dev
|
||||||
paths:
|
|
||||||
- path: "/"
|
|
||||||
pathType: Prefix
|
|
||||||
backend:
|
|
||||||
service:
|
|
||||||
name: http
|
|
||||||
port:
|
|
||||||
number: 9000
|
|
||||||
tls: []
|
tls: []
|
||||||
|
https: true
|
||||||
|
worker:
|
||||||
|
autoscaling:
|
||||||
|
enabled: true
|
||||||
|
minReplicas: 2
|
||||||
|
maxReplicas: 6
|
||||||
|
pdb:
|
||||||
|
enabled: true
|
||||||
|
minAvailable: 2
|
||||||
|
|
||||||
- repoURL: https://git.roboces.dev/catalin/fukuops.git
|
- repoURL: https://git.roboces.dev/catalin/fukuops.git
|
||||||
path: k8s/services/authentik
|
path: k8s/services/authentik
|
||||||
targetRevision: main
|
targetRevision: main
|
||||||
|
|
|
||||||
|
|
@ -90,6 +90,10 @@ spec:
|
||||||
- job_name: 'argocd-notifications-controller-metrics'
|
- job_name: 'argocd-notifications-controller-metrics'
|
||||||
static_configs:
|
static_configs:
|
||||||
- targets: ["argocd-notifications-controller-metrics.argocd:9001"]
|
- targets: ["argocd-notifications-controller-metrics.argocd:9001"]
|
||||||
|
|
||||||
|
- job_name: 'miniflux'
|
||||||
|
static_configs:
|
||||||
|
- targets: ["miniflux-service.apps-roboces:8888"]
|
||||||
alertmanager:
|
alertmanager:
|
||||||
persistence:
|
persistence:
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|
|
||||||
|
|
@ -26,3 +26,4 @@ spec:
|
||||||
- https://grafana.github.io/helm-charts
|
- https://grafana.github.io/helm-charts
|
||||||
- https://kubernetes-sigs.github.io/descheduler/
|
- https://kubernetes-sigs.github.io/descheduler/
|
||||||
- https://github.com/rancher/system-upgrade-controller.git
|
- https://github.com/rancher/system-upgrade-controller.git
|
||||||
|
- https://charts.bitnami.com/bitnami
|
||||||
|
|
|
||||||
|
|
@ -90,5 +90,7 @@ spec:
|
||||||
value: "25"
|
value: "25"
|
||||||
- name: METRICS_COLLECTOR
|
- name: METRICS_COLLECTOR
|
||||||
value: "1"
|
value: "1"
|
||||||
|
- name: METRICS_ALLOWED_NETWORKS
|
||||||
|
value: 10.42.1.0/16
|
||||||
restartPolicy: Always
|
restartPolicy: Always
|
||||||
automountServiceAccountToken: false
|
automountServiceAccountToken: false
|
||||||
|
|
@ -86,17 +86,3 @@ resource "adguard_rewrite" "feeds_local_3" {
|
||||||
answer = "192.168.1.33"
|
answer = "192.168.1.33"
|
||||||
}
|
}
|
||||||
|
|
||||||
resource "adguard_rewrite" "feeds_local_1" {
|
|
||||||
domain = "feeds.fuku"
|
|
||||||
answer = "192.168.1.31"
|
|
||||||
}
|
|
||||||
|
|
||||||
resource "adguard_rewrite" "feeds_local_2" {
|
|
||||||
domain = "feeds.fuku"
|
|
||||||
answer = "192.168.1.32"
|
|
||||||
}
|
|
||||||
|
|
||||||
resource "adguard_rewrite" "feeds_local_3" {
|
|
||||||
domain = "feeds.fuku"
|
|
||||||
answer = "192.168.1.33"
|
|
||||||
}
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue