K3S-HOME/security
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5f9573133ee4ed76b3707fbf942260a15d2ae40f
security/vault/manifests/oidc-secret.yaml
Mayne0213 507cb61ec4 FEAT(vault): add OIDC auth for Authelia SSO 
- Add ExternalSecret for VAULT_CLIENT_SECRET
- Configure default and admin roles for OIDC login
- Fix claim settings (use sub instead of preferred_username)
- Remove oidc-setup-job (already configured)
2026-01-10 01:16:57 +09:00

19 lines
396 B
YAML
Raw Blame History

apiVersion: external-secrets.io/v1
kind: ExternalSecret
metadata:
name: vault-oidc-secret
namespace: vault
spec:
refreshInterval: 1h
secretStoreRef:
kind: ClusterSecretStore
name: vault-backend
target:
name: vault-oidc-secret
creationPolicy: Owner
data:
- secretKey: VAULT_CLIENT_SECRET
remoteRef:
key: authelia
property: VAULT_CLIENT_SECRET
Reference in New Issue View Git Blame Copy Permalink