serguzim/infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add authentik to opentofu

Browse source
This commit is contained in:
Tobias Reisinger 2024-09-28 14:14:09 +02:00
parent 496cd360c6
commit 01ee9d4b44
Signed by: serguzim
GPG key ID: 13AD60C237A28DFE
9 changed files with 184 additions and 84 deletions
roles
authentik/vars
main.yml
linkwarden/vars
main.yml

2
roles/authentik/vars/main.yml
View file

@ -3,7 +3,7 @@ authentik_svc:
domain: auth.serguzim.me
name: authentik
port: 9000
image_tag: 2024.2
image_tag: 2024.8
db:
host: "{{ postgres.host }}"
database: authentik

6
roles/linkwarden/vars/main.yml
View file

@ -30,9 +30,9 @@ linkwarden_env:
NEXT_PUBLIC_CREDENTIALS_ENABLED: true
NEXT_PUBLIC_AUTHENTIK_ENABLED: false
AUTHENTIK_CUSTOM_NAME: auth.serguzim.me
AUTHENTIK_ISSUER: https://auth.serguzim.me/application/o/bookmarks-serguzim-me
AUTHENTIK_CLIENT_ID: "{{ vault_linkwarden.oidc_client.id }}"
AUTHENTIK_CLIENT_SECRET: "{{ vault_linkwarden.oidc_client.secret }}"
AUTHENTIK_ISSUER: "{{ opentofu.authentik_data.linkwarden.base_url }}"
AUTHENTIK_CLIENT_ID: "{{ opentofu.authentik_data.linkwarden.client_id }}"
AUTHENTIK_CLIENT_SECRET: "{{ opentofu.authentik_data.linkwarden.client_secret }}"
linkwarden_compose:
watchtower: true