DevOps/ansible-role-eom
1
0
Fork 0
Code Issues 18 Pull Requests Actions Packages Projects Releases Wiki Activity

Closes #33

Browse Source
This commit is contained in:
Eric Meehan 2025-11-03 22:59:41 -05:00
parent 460fdedf50
commit 71d0491236
1 changed files with 10 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
tasks/dex.yaml
View File

@ -32,10 +32,6 @@
volumeName: "data" volumeName: "data"
size: 256Gi size: 256Gi
- name: Deploy Dex - name: Deploy Dex
kubernetes.core.helm: kubernetes.core.helm:
name: dex name: dex
@ -45,6 +41,12 @@
values: values:
config: config:
issuer: https://dex.eom.dev/ issuer: https://dex.eom.dev/
staticClients:
- id: "{{ matrix_dex_oidc_client_id }}"
name: Matrix Auth Service
secret: "{{ matrix_dex_oidc_client_secret }}"
redirectURIs:
- "https://mas.eom.dev/upstream/callback/01K96AQEZKKABW34PY3R6BVNJ4"
storage: storage:
type: postgres type: postgres
config: config:
@ -62,10 +64,10 @@
config: config:
host: openldap.openldap.svc.cluster.local host: openldap.openldap.svc.cluster.local
insecureNoSSL: true insecureNoSSL: true
bindDN: cn=readonly,dc=example,dc=com bindDN: cn=readonly,dc=eom,dc=dev
bindPW: "{{ openldap_readonly_password }}" bindPW: "{{ openldap_readonly_password }}"
userSearch: userSearch:
baseDN: dc=example,dc=com baseDN: dc=eom,dc=dev
filter: "(&(objectClass=posixAccount)(memberOf=cn=Dex Users,ou=Dex,ou=Services,dc=eom,dc=dev))" filter: "(&(objectClass=posixAccount)(memberOf=cn=Dex Users,ou=Dex,ou=Services,dc=eom,dc=dev))"
username: uid username: uid
idAttr: uid idAttr: uid
@ -81,12 +83,14 @@
nameAttr: cn nameAttr: cn
ingress: ingress:
enabled: true enabled: true
className: nginx
annotations: annotations:
cert-manager.io/cluster-issuer: ca-issuer cert-manager.io/cluster-issuer: ca-issuer
hosts: hosts:
- host: dex.eom.dev - host: dex.eom.dev
paths: paths:
- path: / - path: /
pathType: ImplementationSpecific
tls: tls:
- hosts: - hosts:
- dex.eom.dev - dex.eom.dev