catalin/fukuops
1
0
Fork 1
Code Issues Pull requests 2 Releases Packages 1 Activity

feat: add netbird docker
Some checks failed
checks / pre-commit (push) Successful in 1m14s
Details
checks / k8s (push) Successful in 48s
Details
checks / tflint (push) Successful in 31s
Details
OpenTofu deployments / adguard (push) Successful in 48s
Details
OpenTofu deployments / authentik (push) Failing after 3h2m54s
Details

Browse source
This commit is contained in:
cătălin 2024-09-16 16:15:01 +02:00
commit 50049547b6
No known key found for this signature in database
7 changed files with 194 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

26
tofu/authentik/main.tf
View file

@ -27,6 +27,11 @@ resource "authentik_group" "admins" {
is_superuser = true
}
resource "authentik_group" "vpn" {
name = "vpn"
is_superuser = false
}
module "firezone" {
source = "../modules/authentik-oidc"
@ -52,7 +57,7 @@ module "gitea" {
app_access_group_id = ""
redirect_uris = ["https://git.roboces.dev/user/oauth2/authentik/callback"]
app_icon = "https://git.roboces.dev/assets/img/logo.svg"
app_description = "Beyond coding. We forge. "
app_description = "Beyond coding. We forge."
app_publisher = "Forgejo"
app_url = "https://git.roboces.dev/user/oauth2/authentik"
sub_mode = "hashed_user_id"
@ -136,3 +141,22 @@ module "lidarr" {
internal_host_ssl_validation = false
app_icon = "https://lidarr.audio/img/background/logo.png"
}
module "netbird" {
source = "../modules/authentik-oidc"
app_name = "netbird"
app_slug = "netbird"
client_id = var.netbird_client_id
client_secret = var.netbird_client_secret
client_type = "public"
app_access_group_id = authentik_group.vpn.id
redirect_uris = [
"https://vpn.fukurokuju.dev",
"https://vpn.fukurokuju.dev.*",
"http://localhost:53000"
]
sub_mode = "user_id"
extra_property_mappings = [
"goauthentik.io/providers/oauth2/scope-authentik_api"
]
}

2
tofu/authentik/sample.env
View file

@ -10,3 +10,5 @@ TF_VAR_portainer_client_id=
TF_VAR_portainer_client_secret=
TF_VAR_paperless_client_id=
TF_VAR_paperless_client_secret=
TF_VAR_netbird_client_id=
TF_VAR_netbird_client_secret=

10
tofu/authentik/vars.tf
View file

@ -1,4 +1,3 @@
variable "firezone_client_id" {
description = "Client ID"
type = string
@ -48,3 +47,12 @@ variable "paperless_client_secret" {
description = "Paperless client secret"
type = string
}
variable "netbird_client_id" {
description = "Netbird client ID"
type = string
}
variable "netbird_client_secret" {
description = "Netbird client secret"
type = string
}