Disable internal code-server auth, use authentik

2023-07-24 01:27:16 -04:00 · 2023-07-24 01:27:16 -04:00 · 644e67f110
parent 276e17e028
commit 644e67f110
3 changed files with 17 additions and 0 deletions
--- a/cluster/apps/default/dendron/dendron-config.yaml
+++ b/cluster/apps/default/dendron/dendron-config.yaml
@ -0,0 +1,10 @@
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  name: dendron-config
+  namespace: default
+data:
+  config.yaml: |
+    bind-addr: 127.0.0.1:8080
+    auth: none
+    cert: false
--- a/cluster/apps/default/dendron/helm-release.yaml
+++ b/cluster/apps/default/dendron/helm-release.yaml
@ -38,6 +38,7 @@ spec:
        annotations:
          cert-manager.io/cluster-issuer: letsencrypt-production
          traefik.ingress.kubernetes.io/router.entrypoints: websecure
+          traefik.ingress.kubernetes.io/router.middlewares: traefik-authentik@kubernetescrd
        hosts:
          - host: &host "dendron.${SECRET_NEW_DOMAIN}"
            paths:
@ -60,6 +61,11 @@ spec:
        type: secret
        name: dendron-secret
        mountPath: /home/coder/.ssh
+      codeserver-config:
+        enabled: true
+        type: configmap
+        name: dendron-config
+        mountPath: /home/coder/.config/code-server/config.yaml

    resources:
      requests:
--- a/cluster/apps/default/dendron/kustomization.yaml
+++ b/cluster/apps/default/dendron/kustomization.yaml
@ -2,4 +2,5 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 resources:
 - ./dendron-secret.sops.yaml
+- ./dendron-config.yaml
 - ./helm-release.yaml