catalin/fukuops
1
0
Fork 1
Code Issues Pull requests 2 Releases Packages 1 Activity

chore: update forgejo and miniflux secrets
Some checks are pending
checks / pre-commit (push) Waiting to run
Details
checks / k8s (push) Waiting to run
Details
checks / tflint (push) Waiting to run
Details
OpenTofu deployments / authentik (push) Waiting to run
Details
OpenTofu deployments / adguard (push) Waiting to run
Details

Browse source
This commit is contained in:
cătălin 2026-01-05 20:48:30 +01:00
commit 758b40563c
No known key found for this signature in database
7 changed files with 454 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

14
tofu/authentik/main.tf
View file

@ -42,6 +42,10 @@ resource "authentik_group" "ftp" {
is_superuser = false
}
resource "authentik_group" "mediamanager" {
name = "mediamanager"
is_superuser = false
}
module "gitea" {
source = "../modules/authentik-oidc"
@ -235,3 +239,13 @@ module "rustical" {
redirect_uris = [{ matching_mode = "strict", url = "https://cal.roboces.dev/frontend/login/oidc/callback" }]
app_access_group_id = ""
}
module "mediamanager" {
source = "../modules/authentik-oidc"
app_name = "mediamanager"
app_slug = "mediamanager"
client_id = var.mediamanager_client_id
client_secret = var.mediamanager_client_secret
redirect_uris = [{ matching_mode = "strict", url = "https://mediamanager.roboces.dev/api/v1/auth/oauth/callback" }]
app_access_group_id = authentik_group.mediamanager.id
}

9
tofu/authentik/sample.env
View file

@ -1,7 +1,5 @@
AUTHENTIK_URL=https://auth.fukurokuju.dev
AUTHENTIK_TOKEN=
TF_VAR_firezone_client_id=
TF_VAR_firezone_client_secret=
TF_VAR_gitea_client_id=
TF_VAR_gitea_client_secret=
TF_VAR_miniflux_client_id=
@ -10,5 +8,10 @@ TF_VAR_portainer_client_id=
TF_VAR_portainer_client_secret=
TF_VAR_paperless_client_id=
TF_VAR_paperless_client_secret=
TF_VAR_sftpgo_client_id=
TF_VAR_sftpgo_client_secret=
TF_VAR_netbird_client_id=
TF_VAR_netbird_client_secret=
TF_VAR_rustical_client_id=
TF_VAR_rustical_client_secret=
TF_VAR_mediamanager_client_id=
TF_VAR_mediamanager_client_secret=

14
tofu/authentik/vars.tf
View file

@ -56,11 +56,21 @@ variable "sftpgo_client_secret" {
}
variable "rustical_client_id" {
description = "Radicale client ID"
description = "Rustical client ID"
type = string
}
variable "rustical_client_secret" {
description = "Radicale client secret"
description = "Rustical client secret"
type = string
}
variable "mediamanager_client_id" {
description = "MediaManager client ID"
type = string
}
variable "mediamanager_client_secret" {
description = "MediaManager client secret"
type = string
}