Merge "Multi-tenant - Dex-aio workload-target phase"
This commit is contained in:
commit
bbff8b6bc9
|
@ -0,0 +1,17 @@
|
||||||
|
# DEX-AIO Workload Service
|
||||||
|
|
||||||
|
The "*kustomization*" of dex-aio service is achieved through replacement transformer and patches.
|
||||||
|
The rationale for supporting two different kustomization approaches is values for Dex service are shared with its corresponding API server.
|
||||||
|
The replacement transformer/catalogue avoids duplication of variables/values avoiding configuration errors (DRY: Don't Repeat Yourself principle).
|
||||||
|
The LDAP values are only used for the LDAP backend so supporting through patchesStrategyMerge avoids "complexity", e.i., the need to support a catalog + replacement rules.
|
||||||
|
|
||||||
|
## Dex Dependent Variables/Values
|
||||||
|
Dex dependent values are collected in a catalogue located at *manifests/function/treasuremap-base-catalogues/utility.yaml*.
|
||||||
|
Some of these values are common to the Dex service and API Server/OIDC flags (DRY principle).
|
||||||
|
|
||||||
|
Dex values are substituted using replacement transformer and the replacement rules for the Dex service can be found in *manifests/function/dex-aio/replacements*.
|
||||||
|
|
||||||
|
> NOTE: The replacement transformer is invoked in *treasuremap/manifests/type/multi-tenant/target/workload/replacements/kustomization.yaml*.
|
||||||
|
|
||||||
|
## LDAP Dependent Variables/Values
|
||||||
|
The LDAP dependent values are kustomized through the *patchesStrategyMerge* and the values for the LDAP backend can be found in *./dex-aio-helm-patch.yaml*.
|
|
@ -0,0 +1,19 @@
|
||||||
|
apiVersion: helm.toolkit.fluxcd.io/v2beta1
|
||||||
|
kind: HelmRelease
|
||||||
|
metadata:
|
||||||
|
name: dex-aio
|
||||||
|
namespace: default
|
||||||
|
spec:
|
||||||
|
values:
|
||||||
|
params:
|
||||||
|
ldap:
|
||||||
|
bind_password: "your LDAP bind password"
|
||||||
|
name: "LDAP TEST SERVICES - MULTI-TENANT"
|
||||||
|
config:
|
||||||
|
host: "your LDAP FQDN"
|
||||||
|
bind_dn: "your LDAP bind username"
|
||||||
|
username_prompt: SSO Username
|
||||||
|
user_search:
|
||||||
|
base_dn: dc=testservices,dc=test,dc=com
|
||||||
|
group_search:
|
||||||
|
base_dn: ou=groups,dc=testservices,dc=test,dc=com
|
|
@ -7,3 +7,7 @@ resources:
|
||||||
- ../../../../function/helm-chart-repository/
|
- ../../../../function/helm-chart-repository/
|
||||||
- ../../../../function/local-storage
|
- ../../../../function/local-storage
|
||||||
- ../../../../composite/lma-infra
|
- ../../../../composite/lma-infra
|
||||||
|
- ../../../../function/dex-aio
|
||||||
|
|
||||||
|
patchesStrategicMerge:
|
||||||
|
- dex-aio/dex-aio-helm-patch.yaml
|
||||||
|
|
|
@ -1,6 +1,7 @@
|
||||||
resources:
|
resources:
|
||||||
- ../../../../../composite/storage-cluster/replacements
|
- ../../../../../composite/storage-cluster/replacements
|
||||||
- ../../../../../function/ingress/replacements
|
- ../../../../../function/ingress/replacements
|
||||||
|
- ../../../../../function/dex-aio/replacements
|
||||||
- ../../../../../function/sip/replacements
|
- ../../../../../function/sip/replacements
|
||||||
- ../../../../../function/synclabeller/replacements
|
- ../../../../../function/synclabeller/replacements
|
||||||
- ../../../../../function/vino/replacements
|
- ../../../../../function/vino/replacements
|
||||||
|
|
Loading…
Reference in New Issue