diff --git a/homelab/authentik.yml b/homelab/authentik.yml index 7f36082..f2b846d 100644 --- a/homelab/authentik.yml +++ b/homelab/authentik.yml @@ -1,51 +1,49 @@ -image: - tag: 2024.2.1 - authentik: error_reporting: enabled: false -env: - AUTHENTIK_WEB__THREADS: "2" -envValueFrom: - AUTHENTIK_SECRET_KEY: - secretKeyRef: - name: authentik-secrets - key: secret-key - AUTHENTIK_POSTGRESQL__HOST: - secretKeyRef: - name: hippo-pguser-authentik - key: host - AUTHENTIK_POSTGRESQL__PASSWORD: - secretKeyRef: - name: hippo-pguser-authentik - key: password - AUTHENTIK_POSTGRESQL__USER: - secretKeyRef: - name: hippo-pguser-authentik - key: user - AUTHENTIK_POSTGRESQL__PORT: - secretKeyRef: - name: hippo-pguser-authentik - key: port +global: + image: + tag: 2024.2.3 + env: + - name: AUTHENTIK_WEB__THREADS + value: "2" + - name: AUTHENTIK_SECRET_KEY + valueFrom: + secretKeyRef: + name: authentik-secrets + key: secret-key + - name: AUTHENTIK_POSTGRESQL__HOST + valueFrom: + secretKeyRef: + name: hippo-pguser-authentik + key: host + - name: AUTHENTIK_POSTGRESQL__PASSWORD + valueFrom: + secretKeyRef: + name: hippo-pguser-authentik + key: password + - name: AUTHENTIK_POSTGRESQL__USER + valueFrom: + secretKeyRef: + name: hippo-pguser-authentik + key: user + - name: AUTHENTIK_POSTGRESQL__PORT + valueFrom: + secretKeyRef: + name: hippo-pguser-authentik + key: port -prometheus: - serviceMonitor: - create: true - -ingress: +server: + metrics: + enabled: true + ingress: # Specify kubernetes ingress controller class name ingressClassName: nginx enabled: true - hosts: - # Specify external host name - - host: authentik.gmem.ca - paths: - - path: "/" - pathType: Prefix - # Specify external host name - - host: prometheus.gmem.ca - paths: - - path: "/" - pathType: Prefix + hosts: [ authentik.gmem.ca ] + tls: + - hosts: + - authentik.gmem.ca + secretName: gmem-ca-wildcard redis: enabled: true