yolokube/core-deployments
3
2
Fork 0
Code Issues 6 Pull requests Projects Wiki Activity

add SSO to prometheus, longhorn, alertmanager
All checks were successful
ci/woodpecker/push/dashboard Pipeline was successful
Details

Browse source
This commit is contained in:
Aaron Riedel 2024-09-29 14:10:34 +02:00
parent afc55a389d
commit 04b745d0d6
Signed by: aaron
GPG key ID: 643004654D40D577
3 changed files with 7 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
examples/example-deployment.yaml
View file

@ -69,6 +69,8 @@ metadata:
kubernetes.io/tls-acme: "true" kubernetes.io/tls-acme: "true"
# Use for Basic auth: # Use for Basic auth:
# traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd # traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd
# Use for authentik SSO:
# traefik.ingress.kubernetes.io/router.middlewares: authentik-authentik@kubernetescrd
name: example-ingress name: example-ingress
namespace: example namespace: example
spec: spec:

2
longhorn/values.yaml
View file

@ -25,7 +25,7 @@ ingress:
host: longhorn.services.yolokube.de host: longhorn.services.yolokube.de
annotations: annotations:
kubernetes.io/tls-acme: "true" kubernetes.io/tls-acme: "true"
traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: authentik-authentik@kubernetescrd
tls: true tls: true
tlsSecret: longhorn-tls-key tlsSecret: longhorn-tls-key
metrics: metrics:

8
prometheus/values.yaml
View file

@ -59,7 +59,7 @@ alertmanager:
hosts: hosts:
- alertmanager.services.yolokube.de - alertmanager.services.yolokube.de
annotations: annotations:
traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: authentik-authentik@kubernetescrd
kubernetes.io/tls-acme: "true" kubernetes.io/tls-acme: "true"
tls: tls:
- secretName: alertmanager-tls-key - secretName: alertmanager-tls-key
@ -73,7 +73,7 @@ alertmanager:
hostPrefix: alertmanager hostPrefix: alertmanager
hostDomain: services.yolokube.de hostDomain: services.yolokube.de
annotations: annotations:
traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: authentik-authentik@kubernetescrd
kubernetes.io/tls-acme: "true" kubernetes.io/tls-acme: "true"
tlsSecretPerReplica: tlsSecretPerReplica:
enabled: true enabled: true
@ -120,7 +120,7 @@ prometheus:
hosts: hosts:
- prometheus.services.yolokube.de - prometheus.services.yolokube.de
annotations: annotations:
traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: authentik-authentik@kubernetescrd
kubernetes.io/tls-acme: "true" kubernetes.io/tls-acme: "true"
tls: tls:
- secretName: prometheus-tls-key - secretName: prometheus-tls-key
@ -134,7 +134,7 @@ prometheus:
hostPrefix: prometheus hostPrefix: prometheus
hostDomain: services.yolokube.de hostDomain: services.yolokube.de
annotations: annotations:
traefik.ingress.kubernetes.io/router.middlewares: traefik-basic-auth@kubernetescrd traefik.ingress.kubernetes.io/router.middlewares: authentik-authentik@kubernetescrd
kubernetes.io/tls-acme: "true" kubernetes.io/tls-acme: "true"
tlsSecretPerReplica: tlsSecretPerReplica:
enabled: true enabled: true