chore: ElasticSearch | remove oidc for now

2026-03-18 19:45:44 +05:00
parent bfe5101387
commit 6662de45f9
2 changed files with 24 additions and 24 deletions
--- a/elasticsearch/cluster.yaml
+++ b/elasticsearch/cluster.yaml
@@ -20,11 +20,11 @@ spec:
    tls:
      certificate:
        secretName: elasticsearch-es-http-tls-internal
-  secureSettings:
-  - secretName: kibana-authentik
-    entries:
-    - key: client-secret
-      path: "xpack.security.authc.realms.oidc.authentik.rp.client_secret"
+  # secureSettings:
+  # - secretName: kibana-authentik
+  #   entries:
+  #   - key: client-secret
+  #     path: "xpack.security.authc.realms.oidc.authentik.rp.client_secret"
  nodeSets:
  - name: node
    count: 3
@@ -47,18 +47,18 @@ spec:
        storageClassName: longhorn
    config:
      node.roles: ["master", "data"]
-      xpack.security.authc.token.enabled: true
-      xpack.security.authc.realms.oidc.authentik:
-        order: 2
-        rp.client_id: "atlY82FGIBYvUg87cnENzks5ft1AUUtIfQsXSDog"
-        rp.response_type: code
-        rp.redirect_uri: "https://kibana.dogar.dev/api/security/oidc/callback"
-        op.issuer: "https://auth.dogar.dev/application/o/kibana/"
-        op.authorization_endpoint: "https://auth.dogar.dev/application/o/authorize/"
-        op.token_endpoint: "https://auth.dogar.dev/application/o/token/"
-        op.jwkset_path: "https://auth.dogar.dev/application/o/kibana/jwks/"
-        op.userinfo_endpoint: "https://auth.dogar.dev/application/o/userinfo/"
-        op.endsession_endpoint: "https://auth.dogar.dev/application/o/kibana/end-session/"
-        rp.post_logout_redirect_uri: "https://kibana.dogar.dev/security/logged_out"
-        claims.principal: sub
-        claims.groups: groups
+      # xpack.security.authc.token.enabled: true
+      # xpack.security.authc.realms.oidc.authentik:
+      #   order: 2
+      #   rp.client_id: "atlY82FGIBYvUg87cnENzks5ft1AUUtIfQsXSDog"
+      #   rp.response_type: code
+      #   rp.redirect_uri: "https://kibana.dogar.dev/api/security/oidc/callback"
+      #   op.issuer: "https://auth.dogar.dev/application/o/kibana/"
+      #   op.authorization_endpoint: "https://auth.dogar.dev/application/o/authorize/"
+      #   op.token_endpoint: "https://auth.dogar.dev/application/o/token/"
+      #   op.jwkset_path: "https://auth.dogar.dev/application/o/kibana/jwks/"
+      #   op.userinfo_endpoint: "https://auth.dogar.dev/application/o/userinfo/"
+      #   op.endsession_endpoint: "https://auth.dogar.dev/application/o/kibana/end-session/"
+      #   rp.post_logout_redirect_uri: "https://kibana.dogar.dev/security/logged_out"
+      #   claims.principal: sub
+      #   claims.groups: groups
--- a/elasticsearch/kibana.yaml
+++ b/elasticsearch/kibana.yaml
@@ -16,9 +16,9 @@ spec:
  config:
    server.publicBaseUrl: "https://kibana.dogar.dev"
    xpack.security.authc.providers:
-      oidc.authentik:
-        order: 0
-        realm: authentik
-        description: "Log in with Authentik"
+      # oidc.authentik:
+      #   order: 0
+      #   realm: authentik
+      #   description: "Log in with Authentik"
      basic.basic1:
        order: 1