2022-04-22 21:44:57 +00:00
|
|
|
image:
|
2022-05-07 21:59:53 +00:00
|
|
|
repository: tccr.io/truecharts/authentik
|
2023-07-29 16:28:46 +00:00
|
|
|
tag: v2023.6.1@sha256:d0ff7fa405776b113dff914991a598a8a9754365e10f83232bede961e1903311
|
2022-04-22 21:44:57 +00:00
|
|
|
pullPolicy: IfNotPresent
|
|
|
|
|
|
|
|
geoipImage:
|
2022-05-07 21:59:53 +00:00
|
|
|
repository: tccr.io/truecharts/geoipupdate
|
2023-08-01 10:46:12 +00:00
|
|
|
tag: v6.0.0@sha256:e057484036265c5bde379556463eed605f68f72016f328404202fb293f02a76a
|
2022-04-22 21:44:57 +00:00
|
|
|
pullPolicy: IfNotPresent
|
|
|
|
|
2022-09-03 20:47:37 +00:00
|
|
|
ldapImage:
|
|
|
|
repository: tccr.io/truecharts/authentik-ldap
|
2023-07-29 16:28:46 +00:00
|
|
|
tag: v2023.6.1@sha256:7c31bdcb9d9fa8b6f8591b2d8d9f1de1365cb2a639201cd6bdb985aa0c9c2620
|
2022-09-03 20:47:37 +00:00
|
|
|
pullPolicy: IfNotPresent
|
|
|
|
|
2023-06-13 07:58:26 +00:00
|
|
|
radiusImage:
|
|
|
|
repository: tccr.io/truecharts/authentik-radius
|
2023-07-29 16:28:46 +00:00
|
|
|
tag: v2023.6.1@sha256:35c16ad6031b1ea82b275a7be36bc398f765dc4c44822036fab7f84b800c1c0e
|
2022-09-05 21:07:41 +00:00
|
|
|
pullPolicy: IfNotPresent
|
|
|
|
|
2023-06-16 22:54:52 +00:00
|
|
|
proxyImage:
|
|
|
|
repository: tccr.io/truecharts/authentik-proxy
|
2023-07-29 16:28:46 +00:00
|
|
|
tag: v2023.6.1@sha256:c0343cac900479531bb5bf0d2b40d8f1f57c6016a377b33a86b8aab526d76aa3
|
2023-06-16 22:54:52 +00:00
|
|
|
pullPolicy: IfNotPresent
|
|
|
|
|
2023-06-13 07:58:26 +00:00
|
|
|
authentik:
|
|
|
|
credentials:
|
|
|
|
# Only works on initial install
|
|
|
|
email: my-mail@example.com
|
|
|
|
password: my-password
|
2023-06-17 16:12:45 +00:00
|
|
|
# Optional, only set if you want to use it
|
|
|
|
bootstrapToken: ""
|
2023-06-13 07:58:26 +00:00
|
|
|
general:
|
|
|
|
disableUpdateCheck: false
|
|
|
|
disableStartupAnalytics: true
|
|
|
|
allowUserChangeName: true
|
|
|
|
allowUserChangeEmail: true
|
|
|
|
allowUserChangeUsername: true
|
2023-07-30 12:42:50 +00:00
|
|
|
overwriteDefaultBlueprints: false
|
2023-06-13 07:58:26 +00:00
|
|
|
gdprCompliance: true
|
|
|
|
tokenLength: 128
|
|
|
|
impersonation: true
|
|
|
|
avatars:
|
|
|
|
- gravatar
|
|
|
|
- initials
|
|
|
|
footerLinks:
|
|
|
|
- name: Authentik
|
|
|
|
href: https://goauthentik.io
|
|
|
|
email:
|
|
|
|
host: ""
|
|
|
|
port: 587
|
|
|
|
username:
|
|
|
|
password:
|
|
|
|
useTLS: true
|
|
|
|
useSSL: false
|
|
|
|
timeout: 10
|
|
|
|
from: ""
|
|
|
|
ldap:
|
|
|
|
tlsCiphers: "null"
|
|
|
|
taskTimeoutHours: 2
|
|
|
|
logging:
|
|
|
|
# info, debug, warning, error, trace
|
|
|
|
logLevel: info
|
|
|
|
errorReporting:
|
|
|
|
enabled: false
|
|
|
|
sendPII: false
|
|
|
|
environment: customer
|
|
|
|
sentryDSN: ""
|
|
|
|
geoip:
|
|
|
|
enabled: false
|
2023-07-30 12:05:18 +00:00
|
|
|
# Ignored if enabled is true
|
|
|
|
# If enabled is false, and this is true, the
|
|
|
|
# built-in GeoIP database will be wiped
|
|
|
|
wipeBuiltInDb: false
|
2023-06-13 07:58:26 +00:00
|
|
|
editionID: GeoLite2-City
|
|
|
|
frequency: 8
|
|
|
|
accountID: ""
|
|
|
|
licenseKey: ""
|
|
|
|
outposts:
|
2023-06-16 22:54:52 +00:00
|
|
|
proxy:
|
|
|
|
enabled: false
|
|
|
|
token: ""
|
2023-06-13 07:58:26 +00:00
|
|
|
radius:
|
|
|
|
enabled: false
|
|
|
|
token: ""
|
|
|
|
ldap:
|
|
|
|
enabled: false
|
|
|
|
token: ""
|
2022-04-22 21:44:57 +00:00
|
|
|
|
2023-06-13 07:58:26 +00:00
|
|
|
# ===== DO NOT EDIT BELOW THIS LINE =====
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
workload:
|
2023-06-13 07:58:26 +00:00
|
|
|
# ===== Server =====
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
main:
|
2023-06-13 07:58:26 +00:00
|
|
|
enabled: true
|
|
|
|
type: Deployment
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
main:
|
2023-06-13 07:58:26 +00:00
|
|
|
enabled: true
|
|
|
|
primary: true
|
|
|
|
imageSelector: image
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 1000
|
|
|
|
runAsGroup: 1000
|
|
|
|
# readOnlyRootFilesystem: false
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
envFrom:
|
2023-06-13 07:58:26 +00:00
|
|
|
- configMapRef:
|
|
|
|
name: server
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
- secretRef:
|
2023-06-13 07:58:26 +00:00
|
|
|
name: server-worker
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
- configMapRef:
|
2023-06-13 07:58:26 +00:00
|
|
|
name: server-worker
|
|
|
|
args:
|
|
|
|
- server
|
|
|
|
probes:
|
|
|
|
liveness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /lifecycle/ak
|
|
|
|
- healthcheck
|
|
|
|
readiness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /lifecycle/ak
|
|
|
|
- healthcheck
|
|
|
|
startup:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /lifecycle/ak
|
|
|
|
- healthcheck
|
|
|
|
|
|
|
|
# ===== Worker =====
|
|
|
|
worker:
|
|
|
|
enabled: true
|
|
|
|
type: Deployment
|
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
worker:
|
|
|
|
enabled: true
|
|
|
|
primary: true
|
|
|
|
imageSelector: image
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 1000
|
|
|
|
runAsGroup: 1000
|
|
|
|
# readOnlyRootFilesystem: false
|
|
|
|
envFrom:
|
|
|
|
- secretRef:
|
|
|
|
name: server-worker
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
- configMapRef:
|
2023-06-13 07:58:26 +00:00
|
|
|
name: server-worker
|
|
|
|
args:
|
|
|
|
- worker
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
probes:
|
|
|
|
liveness:
|
2023-06-13 07:58:26 +00:00
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /lifecycle/ak
|
|
|
|
- healthcheck
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
readiness:
|
2023-06-13 07:58:26 +00:00
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /lifecycle/ak
|
|
|
|
- healthcheck
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
startup:
|
2023-06-13 07:58:26 +00:00
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /lifecycle/ak
|
|
|
|
- healthcheck
|
|
|
|
|
2023-06-16 22:54:52 +00:00
|
|
|
# ===== PROXY =====
|
|
|
|
proxy:
|
|
|
|
enabled: true
|
|
|
|
type: Deployment
|
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
proxy:
|
|
|
|
enabled: true
|
|
|
|
primary: true
|
|
|
|
imageSelector: proxyImage
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 1000
|
|
|
|
runAsGroup: 1000
|
|
|
|
envFrom:
|
|
|
|
- configMapRef:
|
|
|
|
name: proxy
|
|
|
|
- secretRef:
|
|
|
|
name: proxy
|
|
|
|
probes:
|
|
|
|
liveness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /proxy
|
|
|
|
- healthcheck
|
|
|
|
readiness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /proxy
|
|
|
|
- healthcheck
|
|
|
|
startup:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /proxy
|
|
|
|
- healthcheck
|
|
|
|
|
2023-06-13 07:58:26 +00:00
|
|
|
# ===== RADIUS =====
|
|
|
|
radius:
|
|
|
|
enabled: true
|
|
|
|
type: Deployment
|
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
radius:
|
|
|
|
enabled: true
|
|
|
|
primary: true
|
|
|
|
imageSelector: radiusImage
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 1000
|
|
|
|
runAsGroup: 1000
|
|
|
|
envFrom:
|
|
|
|
- configMapRef:
|
|
|
|
name: radius
|
|
|
|
- secretRef:
|
|
|
|
name: radius
|
|
|
|
probes:
|
|
|
|
liveness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /radius
|
|
|
|
- healthcheck
|
|
|
|
readiness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /radius
|
|
|
|
- healthcheck
|
|
|
|
startup:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /radius
|
|
|
|
- healthcheck
|
|
|
|
|
|
|
|
# ===== LDAP =====
|
|
|
|
ldap:
|
|
|
|
enabled: true
|
|
|
|
type: Deployment
|
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
ldap:
|
|
|
|
enabled: true
|
|
|
|
primary: true
|
|
|
|
imageSelector: ldapImage
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 1000
|
|
|
|
runAsGroup: 1000
|
|
|
|
envFrom:
|
|
|
|
- configMapRef:
|
|
|
|
name: ldap
|
|
|
|
- secretRef:
|
|
|
|
name: ldap
|
|
|
|
probes:
|
|
|
|
liveness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /ldap
|
|
|
|
- healthcheck
|
|
|
|
readiness:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /ldap
|
|
|
|
- healthcheck
|
|
|
|
startup:
|
|
|
|
enabled: true
|
|
|
|
type: exec
|
|
|
|
command:
|
|
|
|
- /ldap
|
|
|
|
- healthcheck
|
|
|
|
|
|
|
|
# ===== GeoIP Updater =====
|
|
|
|
geoip:
|
|
|
|
enabled: true
|
|
|
|
type: Deployment
|
|
|
|
podSpec:
|
|
|
|
containers:
|
|
|
|
geoip:
|
|
|
|
enabled: true
|
|
|
|
primary: true
|
|
|
|
imageSelector: geoipImage
|
|
|
|
securityContext:
|
|
|
|
runAsUser: 0
|
|
|
|
runAsGroup: 0
|
|
|
|
capabilities:
|
|
|
|
disableS6Caps: true
|
|
|
|
envFrom:
|
|
|
|
- configMapRef:
|
|
|
|
name: geoip
|
|
|
|
- secretRef:
|
|
|
|
name: geoip
|
|
|
|
probes:
|
|
|
|
liveness:
|
|
|
|
enabled: false
|
|
|
|
readiness:
|
|
|
|
enabled: false
|
|
|
|
startup:
|
|
|
|
enabled: false
|
2022-04-22 21:44:57 +00:00
|
|
|
|
|
|
|
service:
|
2023-06-13 07:58:26 +00:00
|
|
|
# Server HTTPS
|
2022-04-22 21:44:57 +00:00
|
|
|
main:
|
|
|
|
ports:
|
|
|
|
main:
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
protocol: https
|
2022-08-09 22:14:43 +00:00
|
|
|
port: 10229
|
2023-06-13 07:58:26 +00:00
|
|
|
# Server HTTP
|
2022-08-09 22:14:43 +00:00
|
|
|
http:
|
|
|
|
enabled: true
|
2022-10-01 10:54:15 +00:00
|
|
|
type: ClusterIP
|
2022-08-09 22:14:43 +00:00
|
|
|
ports:
|
|
|
|
http:
|
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
protocol: http
|
2022-04-22 21:44:57 +00:00
|
|
|
port: 10230
|
2023-06-16 22:54:52 +00:00
|
|
|
# Proxy
|
|
|
|
proxy:
|
2023-06-17 16:12:45 +00:00
|
|
|
enabled: true
|
|
|
|
targetSelector: proxy
|
2023-06-16 22:54:52 +00:00
|
|
|
ports:
|
|
|
|
http:
|
2023-06-17 16:12:45 +00:00
|
|
|
enabled: true
|
2023-06-16 22:54:52 +00:00
|
|
|
protocol: http
|
|
|
|
port: 10227
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: proxy
|
2023-06-16 22:54:52 +00:00
|
|
|
https:
|
|
|
|
enabled: true
|
|
|
|
protocol: https
|
|
|
|
port: 10228
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: proxy
|
2023-06-13 07:58:26 +00:00
|
|
|
# Radius
|
|
|
|
radius:
|
2022-09-03 20:47:37 +00:00
|
|
|
enabled: true
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: radius
|
2022-09-03 20:47:37 +00:00
|
|
|
ports:
|
2023-06-13 07:58:26 +00:00
|
|
|
radius:
|
2022-09-03 20:47:37 +00:00
|
|
|
enabled: true
|
2023-06-13 07:58:26 +00:00
|
|
|
protocol: udp
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: radius
|
2023-06-13 07:58:26 +00:00
|
|
|
port: 1812
|
|
|
|
# LDAP
|
|
|
|
ldap:
|
2022-09-05 21:07:41 +00:00
|
|
|
enabled: true
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: ldap
|
2022-09-05 21:07:41 +00:00
|
|
|
ports:
|
2023-06-13 07:58:26 +00:00
|
|
|
ldap:
|
2022-09-05 21:07:41 +00:00
|
|
|
enabled: true
|
|
|
|
port: 389
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: ldap
|
2023-06-13 07:58:26 +00:00
|
|
|
# LDAPS
|
|
|
|
ldaps:
|
2022-09-05 21:07:41 +00:00
|
|
|
enabled: true
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: ldap
|
2022-09-05 21:07:41 +00:00
|
|
|
ports:
|
2023-06-13 07:58:26 +00:00
|
|
|
ldaps:
|
2022-09-05 21:07:41 +00:00
|
|
|
enabled: true
|
2023-06-13 07:58:26 +00:00
|
|
|
port: 636
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: ldap
|
2023-06-13 07:58:26 +00:00
|
|
|
# Server Metrics
|
|
|
|
servermetrics:
|
2022-09-05 21:07:41 +00:00
|
|
|
enabled: true
|
|
|
|
type: ClusterIP
|
|
|
|
ports:
|
2023-06-13 07:58:26 +00:00
|
|
|
servermetrics:
|
2022-09-05 21:07:41 +00:00
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
protocol: http
|
2023-06-13 07:58:26 +00:00
|
|
|
port: 10231
|
|
|
|
# Radius Metrics
|
|
|
|
radiusmetrics:
|
2022-10-01 10:54:15 +00:00
|
|
|
enabled: true
|
|
|
|
type: ClusterIP
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: radius
|
2022-10-01 10:54:15 +00:00
|
|
|
ports:
|
2023-06-13 07:58:26 +00:00
|
|
|
radiusmetrics:
|
2022-10-01 10:54:15 +00:00
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
protocol: http
|
2023-06-13 07:58:26 +00:00
|
|
|
port: 10232
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: radius
|
2023-06-13 07:58:26 +00:00
|
|
|
# LDAP Metrics
|
2022-10-01 10:54:15 +00:00
|
|
|
ldapmetrics:
|
|
|
|
enabled: true
|
|
|
|
type: ClusterIP
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: ldap
|
2022-10-01 10:54:15 +00:00
|
|
|
ports:
|
|
|
|
ldapmetrics:
|
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
protocol: http
|
2023-06-13 07:58:26 +00:00
|
|
|
port: 10233
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: ldap
|
2023-06-16 22:54:52 +00:00
|
|
|
# Proxy Metrics
|
|
|
|
proxymetrics:
|
|
|
|
enabled: true
|
|
|
|
type: ClusterIP
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: proxy
|
2023-06-16 22:54:52 +00:00
|
|
|
ports:
|
|
|
|
proxymetrics:
|
|
|
|
enabled: true
|
|
|
|
protocol: http
|
|
|
|
port: 10234
|
2023-06-17 16:12:45 +00:00
|
|
|
targetSelector: proxy
|
2022-04-22 21:44:57 +00:00
|
|
|
persistence:
|
|
|
|
media:
|
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
targetSelector:
|
|
|
|
main:
|
2023-06-13 07:58:26 +00:00
|
|
|
main:
|
|
|
|
mountPath: /media
|
|
|
|
worker:
|
|
|
|
worker:
|
|
|
|
mountPath: /media
|
2022-04-22 21:44:57 +00:00
|
|
|
templates:
|
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
targetSelector:
|
|
|
|
main:
|
2023-06-13 07:58:26 +00:00
|
|
|
main:
|
|
|
|
mountPath: /templates
|
|
|
|
worker:
|
|
|
|
worker:
|
|
|
|
mountPath: /templates
|
2023-07-30 12:42:50 +00:00
|
|
|
blueprints:
|
|
|
|
enabled: true
|
|
|
|
targetSelector:
|
|
|
|
worker:
|
|
|
|
worker:
|
|
|
|
# This will automatically change to `/blueprints`
|
|
|
|
# if `overwriteDefaultBlueprints` is set to `true
|
|
|
|
# Otherwise it will respect the value specified here
|
|
|
|
mountPath: /blueprints/custom
|
2022-04-22 21:44:57 +00:00
|
|
|
certs:
|
|
|
|
enabled: true
|
2023-06-13 07:58:26 +00:00
|
|
|
mountPath: /certs
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
targetSelector:
|
2023-06-13 07:58:26 +00:00
|
|
|
worker:
|
|
|
|
worker:
|
|
|
|
mountPath: /certs
|
2022-04-22 21:44:57 +00:00
|
|
|
geoip:
|
|
|
|
enabled: true
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
targetSelector:
|
|
|
|
main:
|
2023-06-13 07:58:26 +00:00
|
|
|
main:
|
|
|
|
mountPath: /geoip
|
|
|
|
worker:
|
|
|
|
worker:
|
|
|
|
mountPath: /geoip
|
|
|
|
geoip:
|
|
|
|
geoip:
|
|
|
|
mountPath: /usr/share/GeoIP
|
2022-04-22 21:44:57 +00:00
|
|
|
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
cnpg:
|
|
|
|
main:
|
|
|
|
enabled: true
|
|
|
|
user: authentik
|
|
|
|
database: authentik
|
|
|
|
|
2022-04-22 21:44:57 +00:00
|
|
|
redis:
|
|
|
|
enabled: true
|
2022-08-08 21:25:02 +00:00
|
|
|
|
feat(authentik): BREAKING CHANGE Port to new common (#9426)
**Description**
<!--
Please include a summary of the change and which issue is fixed. Please
also include relevant motivation and context. List any dependencies that
are required for this change.
-->
⚒️ Fixes # <!--(issue)-->
**⚙️ Type of change**
- [X] ⚙️ Feature/App addition
- [ ] 🪛 Bugfix
- [X] ⚠️ Breaking change (fix or feature that would cause existing
functionality to not work as expected)
- [ ] 🔃 Refactor of current code
**🧪 How Has This Been Tested?**
<!--
Please describe the tests that you ran to verify your changes. Provide
instructions so we can reproduce. Please also list any relevant details
for your test configuration
-->
- Installed on native Helm
- Logged in with the bootstrapped password
- Created LDAP and Proxy outposts
- Copied their tokens
- Enabled the outposts in values.yaml and overrode their tokens (this is
necessary to circumvent a known bug
(https://github.com/truecharts/charts/issues/7390) - the bootstrap token
cannot be used by an outpost, so in the future, the overriding of the
token must become mandatory but that's for another PR)
- Logged back in authentik, confirmed the 2 outposts are showing as
healthy in its UI
**📃 Notes:**
<!-- Please enter any other relevant information here -->
- I tried to make the minimal amount of changes necessary to port this
to the new common, in order to keep the diff and this PR as small as
possible
- One small exception to the above, this PR also closes #6986 , since
this was basically 1 line change in the persistence dict
- I have bumped the chart's major revision but i am keeping it in the
incubator train for now for 2 reasons:
* It can get tested by the community (this is my first app port to the
new common)
* There are a few of TODOs left in there (1 by me and several by
others), as well as a couple of known bugs in the chart, which I would
like to address in separate PRs
- I am assuming that `questions.yaml` needs no changes (since I haven't
changed the data structure in `values.yaml`, apart from the necessary
changes to port to new common). I have NOT tested this, so do let me
know if I need to take a look at this and make changes.
**✔️ Checklist:**
- [X] ⚖️ My code follows the style guidelines of this project
- [X] 👀 I have performed a self-review of my own code
- [X] #️⃣ I have commented my code, particularly in hard-to-understand
areas
- [ ] 📄 I have made corresponding changes to the documentation
- [X] ⚠️ My changes generate no new warnings
- [X] 🧪 I have added tests to this description that prove my fix is
effective or that my feature works
- [X] ⬆️ I increased versions for any altered app according to semantic
versioning
**➕ App addition**
If this PR is an app addition please make sure you have done the
following.
- [ ] 🪞 I have opened a PR on
[truecharts/containers](https://github.com/truecharts/containers) adding
the container to TrueCharts mirror repo.
- [ ] 🖼️ I have added an icon in the Chart's root directory called
`icon.png`
---
_Please don't blindly check all the boxes. Read them and only check
those that apply.
Those checkboxes are there for the reviewer to see what is this all
about and
the status of this PR with a quick glance._
---------
Signed-off-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
Co-authored-by: Kjeld Schouten <kjeld@schouten-lebbing.nl>
2023-06-10 11:02:00 +00:00
|
|
|
portal:
|
|
|
|
open:
|
|
|
|
enabled: true
|
2023-06-13 07:58:26 +00:00
|
|
|
|
|
|
|
metrics:
|
2023-06-16 22:54:52 +00:00
|
|
|
# FIXME: Metrics do not work yet
|
2023-06-13 07:58:26 +00:00
|
|
|
servermetrics:
|
|
|
|
enabled: true
|
|
|
|
type: servicemonitor
|
|
|
|
endpoints:
|
|
|
|
- port: "{{ .Values.service.servermetrics.ports.servermetrics.port }}"
|
|
|
|
path: /metrics
|
|
|
|
prometheusRule:
|
|
|
|
enabled: false
|
|
|
|
radiusmetrics:
|
|
|
|
enabled: true
|
|
|
|
type: servicemonitor
|
|
|
|
endpoints:
|
|
|
|
- port: "{{ .Values.service.radiusmetrics.ports.radiusmetrics.port }}"
|
|
|
|
path: /metrics
|
|
|
|
prometheusRule:
|
|
|
|
enabled: false
|
|
|
|
ldapmetrics:
|
|
|
|
enabled: true
|
|
|
|
type: servicemonitor
|
|
|
|
endpoints:
|
|
|
|
- port: "{{ .Values.service.ldapmetrics.ports.ldapmetrics.port }}"
|
|
|
|
path: /metrics
|
|
|
|
prometheusRule:
|
|
|
|
enabled: false
|
2023-06-16 22:54:52 +00:00
|
|
|
proxymetrics:
|
|
|
|
enabled: true
|
|
|
|
type: servicemonitor
|
|
|
|
endpoints:
|
|
|
|
- port: "{{ .Values.service.proxymetrics.ports.proxymetrics.port }}"
|
|
|
|
path: /metrics
|
|
|
|
prometheusRule:
|
|
|
|
enabled: false
|