|
|
2cfcc586be
|
refactor: update Vault secret paths to new categorized structure
- authelia: postgresql → storage/postgresql, authelia → security/authelia
- external-secrets: zot → storage/zot (ClusterExternalSecret)
- vault: secret/data/vault/config → security/vault, authelia → security/authelia
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
|
2026-01-11 22:36:33 +09:00 |
|
|
|
5f9573133e
|
FIX(authelia): configure OIDC claims and scopes
- Remove groups scope (not provided by Authelia)
- Add claims_policy for preferred_username
- Remove sub from claims_policy (standard claim)
|
2026-01-10 01:16:58 +09:00 |
|
|
|
507cb61ec4
|
FEAT(vault): add OIDC auth for Authelia SSO
- Add ExternalSecret for VAULT_CLIENT_SECRET
- Configure default and admin roles for OIDC login
- Fix claim settings (use sub instead of preferred_username)
- Remove oidc-setup-job (already configured)
|
2026-01-10 01:16:57 +09:00 |
|
|
|
6fbf2b16c2
|
REFACTOR(vault): move resources to manifests
- Move additional resources to manifests/ folder
- Separate from Helm chart configuration
|
2026-01-06 01:38:33 +09:00 |
|
