search

martinohmann / home-ops

Wife approved HomeOps driven by Kubernetes and GitOps using Flux
MIT License
5 stars 0 forks source link

feat(kube-web-view): enable OAuth2 again #1061

Closed martinohmann closed 1 week ago

github-actions[bot] commented 1 week ago

kustomization changes in kubernetes/main

--- kubernetes/main/apps/monitoring/kube-web-view/app Kustomization: flux-system/kube-web-view HelmRelease: monitoring/kube-web-view

+++ kubernetes/main/apps/monitoring/kube-web-view/app Kustomization: flux-system/kube-web-view HelmRelease: monitoring/kube-web-view

@@ -28,18 +28,32 @@

     remediation:
       retries: 3
       strategy: uninstall
   values:
     controllers:
       kube-web-view:
+        annotations:
+          reloader.stakater.com/auto: 'true'
         containers:
           app:
             args:
             - --clusters=main=http://localhost:8001;storage=http://localhost:8002
             - --port=8080
             - --show-container-logs
+            env:
+            - name: OAUTH2_AUTHORIZE_URL
+              value: https://identity.18b.haus/application/o/authorize/
+            - name: OAUTH2_ACCESS_TOKEN_URL
+              value: https://identity.18b.haus/application/o/token/
+            - name: OAUTH2_CLIENT_ID
+              value: kube-web-view
+            - name: OAUTH2_SCOPE
+              value: openid profile email
+            envFrom:
+            - secretRef:
+                name: kube-web-view
             image:
               repository: hjacobs/kube-web-view
               tag: 23.8.0
             probes:
               readiness:
                 custom: true
github-actions[bot] commented 1 week ago

helmrelease changes in kubernetes/main

--- HelmRelease: monitoring/kube-web-view Deployment: monitoring/kube-web-view

+++ HelmRelease: monitoring/kube-web-view Deployment: monitoring/kube-web-view

@@ -5,12 +5,14 @@

   name: kube-web-view
   labels:
     app.kubernetes.io/component: kube-web-view
     app.kubernetes.io/instance: kube-web-view
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: kube-web-view
+  annotations:
+    reloader.stakater.com/auto: 'true'
 spec:
   revisionHistoryLimit: 3
   replicas: 1
   strategy:
     type: RollingUpdate
   selector:
@@ -34,12 +36,24 @@

       dnsPolicy: ClusterFirst
       containers:
       - args:
         - --clusters=main=http://localhost:8001;storage=http://localhost:8002
         - --port=8080
         - --show-container-logs
+        env:
+        - name: OAUTH2_AUTHORIZE_URL
+          value: https://identity.18b.haus/application/o/authorize/
+        - name: OAUTH2_ACCESS_TOKEN_URL
+          value: https://identity.18b.haus/application/o/token/
+        - name: OAUTH2_CLIENT_ID
+          value: kube-web-view
+        - name: OAUTH2_SCOPE
+          value: openid profile email
+        envFrom:
+        - secretRef:
+            name: kube-web-view
         image: hjacobs/kube-web-view:23.8.0
         name: app
         readinessProbe:
           httpGet:
             path: /health
             port: 8080