From 23be03c8025a619d110f7f1ff0193e1968a9eebd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Simen=20R=C3=B8stvik?= <simen.rostvik@crayon.com>
Date: Mon, 5 Dec 2022 15:18:00 +0100
Subject: [PATCH] SSO?

---
 Charts/argo-cd/values.yaml | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/Charts/argo-cd/values.yaml b/Charts/argo-cd/values.yaml
index 676b589..9a03942 100644
--- a/Charts/argo-cd/values.yaml
+++ b/Charts/argo-cd/values.yaml
@@ -1,10 +1,11 @@
 argo-cd:
   dex:
-    enabled: false
+    enabled: true
   server:
     rbacConfig:
       policy.csv: |
         g, roxedus, role:admin
+        g, ArgoCD Admins, role:admin
     service:
       type: NodePort
     extraArgs:
@@ -18,6 +19,8 @@ argo-cd:
           url: https://argoproj.github.io/argo-helm
   configs:
     cm:
+      url: https://argo.roxedus.com
+
       resource.customizations.health.networking.k8s.io_Ingress: |
         hs = {}
         hs.status = "Healthy"
@@ -45,3 +48,20 @@ argo-cd:
         hs.status = "Progressing"
         hs.message = "Waiting for certificate"
         return hs
+
+      dex.config: |
+
+        connectors:
+        - config:
+            issuer: http://authentik.roxedus.com/application/o/argooidc/
+            clientID: 509095b1ecd5117c95b9a2879d1cbcd5adc0b5d9
+            clientSecret: $authentik-sso:oidc.auth0.clientSecret
+            insecureEnableGroups: true
+            scopes:
+              - openid
+              - profile
+              - email
+              - groups
+          name: authentik
+          type: oidc
+          id: authentik