feat(k8s-peterg): Add Authentik authentication to ArgoCD
This commit is contained in:
parent
e529e5c255
commit
11fe8a40b2
SSH key fingerprint:
SHA256:B5tYaxBExaDm74r1px9iVeZ6F/ZDiyiy9SbBqfZYrvg
4 changed files with 71 additions and 7 deletions
33
k8s-peterg/argocd/patches/configmap.yaml
Normal file
33
k8s-peterg/argocd/patches/configmap.yaml
Normal file
|
|
@ -0,0 +1,33 @@
|
|||
---
|
||||
apiVersion: v1
|
||||
kind: ConfigMap
|
||||
metadata:
|
||||
name: argocd-cm
|
||||
labels:
|
||||
app.kubernetes.io/name: argocd-cm
|
||||
app.kubernetes.io/part-of: argocd
|
||||
data:
|
||||
dex.config: |
|
||||
connectors:
|
||||
- name: authentik
|
||||
id: authentik
|
||||
type: argocd-cm
|
||||
config:
|
||||
issuer: $argocd-authentik-provider:dex.authentik.issuer
|
||||
clientID: $argocd-authentik-app:dex.authentik.clientID
|
||||
clientSecret: $argocd-authentik-app:dex.authentik.clientSecret
|
||||
scopes:
|
||||
- openid
|
||||
- profile
|
||||
- email
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: ConfigMap
|
||||
metadata:
|
||||
name: argocd-rbac-cm
|
||||
labels:
|
||||
app.kubernetes.io/part-of: argocd
|
||||
data:
|
||||
policy.default: role:readonly
|
||||
policy.csv: |
|
||||
g, ArgoCD Admins, role:admin
|
||||
Loading…
Add table
Add a link
Reference in a new issue