47 lines
1.3 KiB
YAML
47 lines
1.3 KiB
YAML
apiVersion: argoproj.io/v1alpha1
|
|
kind: Application
|
|
metadata:
|
|
name: oauth2proxy
|
|
namespace: argocd
|
|
spec:
|
|
destination:
|
|
namespace: auth
|
|
server: https://kubernetes.default.svc
|
|
project: default
|
|
source:
|
|
chart: oauth2-proxy
|
|
helm:
|
|
parameters:
|
|
- name: config.clientID
|
|
value: f7f67ba843f06f244857b01d96cbe7bc
|
|
- name: config.clientSecret
|
|
value: 2774dc53beb0570e5ea7bc342d2a8f4e47d2d16986ad542d4ce776505043238f
|
|
- name: config.cookieSecret
|
|
value: iRNHJrMvm3Lv3UUe3j0ZBWTic3y5XuZQ-mdLVAdmNV4=
|
|
values: |-
|
|
ingress:
|
|
enabled: true
|
|
className: nginx
|
|
path: /oauth2
|
|
pathType: Prefix
|
|
hosts:
|
|
- homeauth.martyn.berlin
|
|
tls:
|
|
- hosts:
|
|
- homeauth.martyn.berlin
|
|
extraArgs:
|
|
- --provider=oidc
|
|
- --oidc-issuer-url=https://auth.martyn.berlin/dex
|
|
- "--scope=openid profile email"
|
|
- "--email-domain=*"
|
|
- "--upstream=static://200"
|
|
- "--http-address=0.0.0.0:4180"
|
|
- "--whitelist-domain=.martyn.berlin"
|
|
- "--cookie-domain=.martyn.berlin"
|
|
- "--cookie-name=_home_oauth2_proxy"
|
|
repoURL: https://oauth2-proxy.github.io/manifests
|
|
targetRevision: 7.12.18
|
|
syncPolicy:
|
|
automated:
|
|
prune: true
|
|
selfHeal: true
|