86 lines
2.1 KiB
YAML
86 lines
2.1 KiB
YAML
# ---
|
|
# Dex Helm Charts from Git Repository
|
|
# apiVersion: source.toolkit.fluxcd.io/v1beta1
|
|
# kind: GitRepository
|
|
# metadata:
|
|
# name: dex-git-repo
|
|
# namespace: collator
|
|
# spec:
|
|
# interval: 5m
|
|
# url: https://github.com/airshipit/charts.git
|
|
# ref:
|
|
# branch: master
|
|
---
|
|
apiVersion: helm.toolkit.fluxcd.io/v2beta1
|
|
kind: HelmRelease
|
|
metadata:
|
|
name: dex-aio
|
|
spec:
|
|
interval: 5m
|
|
chart:
|
|
spec:
|
|
chart: dex-aio
|
|
sourceRef:
|
|
kind: HelmRepository
|
|
namespace: helm-chart-collator
|
|
name: collator
|
|
values:
|
|
images:
|
|
applications:
|
|
dex:
|
|
tag: v2.28.1
|
|
name: dexidp/dex
|
|
repo: quay.io
|
|
nginx:
|
|
tag: 1.17.10-alpine
|
|
name: nginx
|
|
repo: docker.io
|
|
authenticator:
|
|
tag: 1.2.0
|
|
name: mintel/dex-k8s-authenticator
|
|
repo: docker.io
|
|
node_labels:
|
|
dex:
|
|
key: node-role.kubernetes.io/worker
|
|
value: ""
|
|
params:
|
|
site:
|
|
name: dex-test-site
|
|
endpoints:
|
|
hostname: dex.function.local
|
|
port:
|
|
https: 30556
|
|
http: 30554
|
|
k8s: 6443
|
|
tls:
|
|
cert_manager: true
|
|
issuer:
|
|
name: workload-cluster-ca-issuer
|
|
kind: Issuer
|
|
oidc:
|
|
client_id: function-kubernetes
|
|
client_secret: pUBnBOY80SnXgjibTYM9ZWNzY2xreNGQok
|
|
ldap:
|
|
bind_password: "your LDAP bind password"
|
|
name: "LDAP TEST SERVICES"
|
|
config:
|
|
host: "your LDAP FQDN"
|
|
port: 636
|
|
bind_dn: "your LDAP bind username"
|
|
bind_pw_env: LDAP_BIND_PW
|
|
username_prompt: SSO Username
|
|
user_search:
|
|
base_dn: dc=testservices,dc=test,dc=com
|
|
filter: "(objectClass=person)"
|
|
username: cn
|
|
idAttr: cn
|
|
emailAttr: name
|
|
nameAttr: name
|
|
group_search:
|
|
base_dn: ou=groups,dc=testservices,dc=test,dc=com
|
|
filter: "(objectClass=group)"
|
|
userMatchers:
|
|
userAttr: DN
|
|
groupAttr: member
|
|
nameAttr: cn
|