From 53db7b532c8ca33d7d0ad270543126dddc553188 Mon Sep 17 00:00:00 2001 From: j Date: Sat, 16 Aug 2025 23:58:27 +0000 Subject: [PATCH] REDIS secrets via secret. Tidy up naming a little. --- applications/40-authentik/authentik.yaml | 39 ++++++++---------------- 1 file changed, 13 insertions(+), 26 deletions(-) diff --git a/applications/40-authentik/authentik.yaml b/applications/40-authentik/authentik.yaml index 1f42c38..b7c255a 100644 --- a/applications/40-authentik/authentik.yaml +++ b/applications/40-authentik/authentik.yaml @@ -13,41 +13,28 @@ spec: helm: releaseName: "authentik" values: | - global: - envFrom: - - secretRef: - name: authentik-secret - authentik: - secret_key: "env://AUTHENTIK_SECRET_KEY" - postgresql: - password: "env://AUTHENTIK_POSTGRES_PASSWORD" - error_reporting: - enabled: true - database: host: postgresql.database - existingSecret: authentik-db-credentials + existingSecret: authentik-secret secretKeys: username: POSTGRES_USER password: POSTGRES_PASSWORD name: POSTGRES_DB - server: - ingress: - enabled: true - hosts: - - auth.hxme.net - annotations: - external-dns.alpha.kubernetes.io/hostname: auth.hxme.net - tls: - - secretName: wildcard-hxme-net - hosts: - - auth.hxme.net - postgresql: - enabled: false redis: enabled: false - + existingSecret: authentik-secret + secretKeys: + password: REDIS_PASSWORD + host: redis-master.database + + postgresql: + enabled: false + + global: + envFrom: + - secretRef: + name: authentik-env destination: server: "https://kubernetes.default.svc" namespace: home-server