Mayne0213
f17bbe3514
- Add OIDC configuration (clientID, issuerURL, scopes) - Add ExternalSecret for OIDC client secret from Vault - Remove Authelia middleware (using direct OIDC auth)
49 lines
792 B
YAML
49 lines
792 B
YAML
# Headlamp Helm Values
|
|
|
|
replicaCount: 1
|
|
|
|
image:
|
|
registry: ghcr.io
|
|
repository: headlamp-k8s/headlamp
|
|
tag: ""
|
|
pullPolicy: IfNotPresent
|
|
|
|
serviceAccount:
|
|
create: true
|
|
name: headlamp
|
|
|
|
clusterRoleBinding:
|
|
create: true
|
|
|
|
service:
|
|
type: ClusterIP
|
|
port: 80
|
|
|
|
resources:
|
|
requests:
|
|
cpu: 10m
|
|
memory: 64Mi
|
|
limits:
|
|
memory: 128Mi
|
|
|
|
# Ingress disabled - managed separately
|
|
ingress:
|
|
enabled: false
|
|
|
|
# Config
|
|
config:
|
|
baseURL: "https://kubernetes0213.kro.kr"
|
|
oidc:
|
|
clientID: "headlamp"
|
|
clientSecret: ""
|
|
issuerURL: "https://auth0213.kro.kr"
|
|
scopes: "openid profile email groups"
|
|
|
|
# OIDC client secret from ExternalSecret
|
|
env:
|
|
- name: HEADLAMP_CONFIG_OIDC_clientSecret
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: headlamp-oidc
|
|
key: clientSecret
|