2023-09-03 14:58:07 +02:00
|
|
|
secret:
|
|
|
|
|
name: ""
|
|
|
|
|
labels: {}
|
|
|
|
|
|
|
|
|
|
blueprint:
|
|
|
|
|
authentik:
|
|
|
|
|
domain: "https://auth.wrenix.eu"
|
|
|
|
|
labels:
|
|
|
|
|
goauthentik_blueprint: "1"
|
|
|
|
|
provider:
|
2023-09-06 00:40:34 +02:00
|
|
|
enabled: true
|
2023-09-03 14:58:07 +02:00
|
|
|
name: ""
|
|
|
|
|
authorizationFlow: "default-provider-authorization-implicit-consent"
|
2023-09-06 22:02:27 +02:00
|
|
|
type: "oidc" # or proxy
|
|
|
|
|
# used for oidc provider
|
|
|
|
|
oidc:
|
|
|
|
|
clientType: "confidential"
|
|
|
|
|
# -- client id - generated if secret enabled
|
|
|
|
|
clientID:
|
|
|
|
|
# -- client secret - generated if secret enabled
|
|
|
|
|
clientSecret:
|
|
|
|
|
redirectURL: ""
|
|
|
|
|
# -- Need for non-curve / RSA
|
|
|
|
|
signingKey: ""
|
|
|
|
|
# -- Scope
|
|
|
|
|
scopes:
|
|
|
|
|
# -- used for proxy provider
|
|
|
|
|
proxy:
|
|
|
|
|
externalHost:
|
|
|
|
|
# -- not yet supported
|
|
|
|
|
ingress:
|
|
|
|
|
enabled: false
|
|
|
|
|
domain:
|
|
|
|
|
# service backend
|
|
|
|
|
backend: authentik
|
2023-09-03 14:58:07 +02:00
|
|
|
application:
|
|
|
|
|
name: ""
|
|
|
|
|
slug: "app-name"
|
2023-09-06 00:40:34 +02:00
|
|
|
# -- uuid for bindPolicyID for group - if not set generated on secret for be stable (or groups: [] filled)
|
|
|
|
|
bindPolicyID:
|
2023-09-03 14:58:07 +02:00
|
|
|
policyEngineMode: "any"
|
|
|
|
|
group: ""
|
|
|
|
|
launchURL: ""
|
|
|
|
|
openInNewTab: false
|
|
|
|
|
icon: ""
|
|
|
|
|
description: ""
|
|
|
|
|
publisher: ""
|
2023-09-06 00:40:34 +02:00
|
|
|
# -- additional groups
|
|
|
|
|
# example:
|
|
|
|
|
# - slug: "app: grafana-admin"
|
|
|
|
|
# parent: "app: infra"
|
|
|
|
|
# bindID: uuid
|
|
|
|
|
#
|
2023-09-03 14:58:07 +02:00
|
|
|
groups: []
|
