Argo/apps/templates/authentik.yaml

apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  name: authentik
  namespace: argo-cd
  finalizers:
    - resources-finalizer.argocd.argoproj.io
spec:
  destination:
    server: https://kubernetes.default.svc
    namespace: authentik
  project: default
  source:
    chart: authentik
    helm:
      values: |

        image:
          repository: ghcr.io/goauthentik/server
          tag: 2022.11.3

        authentik:
          error_reporting:
            enabled: true

        ingress:
          enabled: true
          ingressClassName: traefik
          annotations:
            cert-manager.io/acme-challenge-type: dns01
            cert-manager.io/cluster-issuer: roxedus.com-cloudflare
          hosts:
            - host: authentik.roxedus.com
              paths:
                - path: "/"
                  pathType: Prefix

          tls:
          - hosts:
            - authentik.roxedus.com
            secretName: authentik-roxedus-com-cert

        envValueFrom:
          AUTHENTIK_POSTGRESQL__PASSWORD:
            secretKeyRef:
              key: postgresql-password
              name: authentik-postgresql

          AUTHENTIK_SECRET_KEY:
            secretKeyRef:
              key: AUTHENTIK_SECRET_KEY
              name: authentik-secret

        postgresql:
          image:
            registry: ghcr.io
            repository: zcube/bitnami-compat/postgresql
            tag: 11.18.0-debian-11-r39
          enabled: true
          auth:
            existingSecret: authentik-postgresql
          persistence:
            enabled: true
            storageClass: longhorn
            accessModes:
              - ReadWriteOnce
        redis:
          enabled: true
          image:
            registry: ghcr.io
            repository: zcube/bitnami-compat/redis
            tag: 6.2.7-debian-11-r39

    repoURL: https://charts.goauthentik.io
    targetRevision: 2022.11.3
  syncPolicy:
    automated:
      prune: true
      selfHeal: true
    syncOptions:
      - CreateNamespace=true
aaaaaaaaaa 2022-11-30 13:32:46 +01:00			`apiVersion: argoproj.io/v1alpha1`
			`kind: Application`
			`metadata:`
			`name: authentik`
			`namespace: argo-cd`
			`finalizers:`
			`- resources-finalizer.argocd.argoproj.io`
			`spec:`
			`destination:`
			`server: https://kubernetes.default.svc`
			`namespace: authentik`
			`project: default`
			`source:`
			`chart: authentik`
			`helm:`
			`values: \|`

			`image:`
			`repository: ghcr.io/goauthentik/server`
bump 2022-12-06 02:22:05 +01:00			`tag: 2022.11.3`
aaaaaaaaaa 2022-11-30 13:32:46 +01:00
			`authentik:`
			`error_reporting:`
			`enabled: true`

Ingres 2022-12-01 00:43:06 +01:00			`ingress:`
service 2022-11-30 13:50:44 +01:00			`enabled: true`
Ingres 2022-12-01 00:43:06 +01:00			`ingressClassName: traefik`
tls 2022-12-01 00:50:45 +01:00			`annotations:`
			`cert-manager.io/acme-challenge-type: dns01`
			`cert-manager.io/cluster-issuer: roxedus.com-cloudflare`
Ingres 2022-12-01 00:43:06 +01:00			`hosts:`
			`- host: authentik.roxedus.com`
			`paths:`
			`- path: "/"`
			`pathType: Prefix`
service 2022-11-30 13:50:44 +01:00
tls 2022-12-01 00:45:58 +01:00			`tls:`
			`- hosts:`
			`- authentik.roxedus.com`
			`secretName: authentik-roxedus-com-cert`

aaaaaaaaaa 2022-11-30 13:32:46 +01:00			`envValueFrom:`
			`AUTHENTIK_POSTGRESQL__PASSWORD:`
			`secretKeyRef:`
			`key: postgresql-password`
			`name: authentik-postgresql`

			`AUTHENTIK_SECRET_KEY:`
			`secretKeyRef:`
			`key: AUTHENTIK_SECRET_KEY`
			`name: authentik-secret`

			`postgresql:`
			`image:`
			`registry: ghcr.io`
			`repository: zcube/bitnami-compat/postgresql`
			`tag: 11.18.0-debian-11-r39`
			`enabled: true`
			`auth:`
			`existingSecret: authentik-postgresql`
			`persistence:`
			`enabled: true`
			`storageClass: longhorn`
			`accessModes:`
			`- ReadWriteOnce`
			`redis:`
			`enabled: true`
			`image:`
			`registry: ghcr.io`
			`repository: zcube/bitnami-compat/redis`
			`tag: 6.2.7-debian-11-r39`

			`repoURL: https://charts.goauthentik.io`
k 2022-12-06 02:25:40 +01:00			`targetRevision: 2022.11.3`
aaaaaaaaaa 2022-11-30 13:32:46 +01:00			`syncPolicy:`
			`automated:`
			`prune: true`
			`selfHeal: true`
			`syncOptions:`
			`- CreateNamespace=true`