wrenix/helm-charts
1
0
Fork 0
Code Issues 8 Pull requests 7 Projects Packages Activity
helm-charts/authentik-application/files/provider/oidc.yaml.gotmpl

58 lines
2.1 KiB
Go Template
Raw Blame History

{{- $clientID := get . "clientID" }}
{{- $clientSecret := get . "clientSecret" }}
{{- with get . "root" }}
{{- range .Values.blueprint.provider.oidc.scopes }}
{{- if .expression }}
- model: authentik_providers_oauth2.ScopeMapping
identifiers:
name: {{ .name | quote }}
state: present
attrs:
name: {{ .name | quote }}
scope_name: {{ .scope_name }}
expression: {{ .expression | quote }}
{{- end }}
{{- end }}
- model: authentik_providers_oauth2.OAuth2Provider
id: {{ .Values.blueprint.provider.name | default (include "authentik-application.fullname" .) }}
identifiers:
name: {{ .Values.blueprint.provider.name | default (include "authentik-application.fullname" .) }}
state: present
attrs:
authorization_flow: !Find [authentik_flows.flow, [slug, {{ .Values.blueprint.provider.authorizationFlow }}]]
invalidation_flow: !Find [authentik_flows.flow, [slug, {{ .Values.blueprint.provider.invalidationFlow }}]]
{{- with .Values.blueprint.provider.oidc }}
client_type: {{ .clientType | quote }}
client_id: {{ $clientID | quote }}
client_secret: {{ $clientSecret | quote }}
redirect_uris:
{{- if (kindIs "string" .redirectURL) }}
- matching_mode: "strict"
url: {{ .redirectURL | quote }}
{{- else }}
{{- range $url := .redirectURL }}
{{- if (kindIs "string" $url) }}
- matching_mode: "strict"
url: {{ $url | quote }}
{{- else }}
{{- toYaml (list $url) | nindent 6 }}
{{- end }}{{/* one of is a string -> else is a object */}}
{{- end }}{{/* one of range */}}
{{- end }}{{/* redirect is a string -> else is a slice */}}
{{- with .tokenDuration }}
access_token_validity: {{ . | quote }}
{{- end }}
{{- with .signingKey }}
signing_key: !Find [authentik_crypto.CertificateKeyPair, [name, {{ . }}]]
{{- end }}
{{- with .scopes }}
property_mappings:
{{- range . }}
- !Find [authentik_providers_oauth2.ScopeMapping, [name, {{ .name | quote }}]]
{{- end }}
{{- end }}
{{- end }}
{{- end }}{{/* end with of get-root */}}
Reference in a new issue View git blame Copy permalink