shahab/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: ElasticSearch | remove oidc for now

Browse Source 
chore: ElasticSearch | remove oidc for now
This commit is contained in:
Shahab Dogar
2026-03-18 19:45:44 +05:00
parent bfe5101387
commit 6662de45f9
2 changed files with 24 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

40
elasticsearch/cluster.yaml
View File

@@ -20,11 +20,11 @@ spec:
tls: tls:
certificate: certificate:
secretName: elasticsearch-es-http-tls-internal secretName: elasticsearch-es-http-tls-internal
secureSettings: # secureSettings:
- secretName: kibana-authentik # - secretName: kibana-authentik
entries: # entries:
- key: client-secret # - key: client-secret
path: "xpack.security.authc.realms.oidc.authentik.rp.client_secret" # path: "xpack.security.authc.realms.oidc.authentik.rp.client_secret"
nodeSets: nodeSets:
- name: node - name: node
count: 3 count: 3
@@ -47,18 +47,18 @@ spec:
storageClassName: longhorn storageClassName: longhorn
config: config:
node.roles: ["master", "data"] node.roles: ["master", "data"]
xpack.security.authc.token.enabled: true # xpack.security.authc.token.enabled: true
xpack.security.authc.realms.oidc.authentik: # xpack.security.authc.realms.oidc.authentik:
order: 2 # order: 2
rp.client_id: "atlY82FGIBYvUg87cnENzks5ft1AUUtIfQsXSDog" # rp.client_id: "atlY82FGIBYvUg87cnENzks5ft1AUUtIfQsXSDog"
rp.response_type: code # rp.response_type: code
rp.redirect_uri: "https://kibana.dogar.dev/api/security/oidc/callback" # rp.redirect_uri: "https://kibana.dogar.dev/api/security/oidc/callback"
op.issuer: "https://auth.dogar.dev/application/o/kibana/" # op.issuer: "https://auth.dogar.dev/application/o/kibana/"
op.authorization_endpoint: "https://auth.dogar.dev/application/o/authorize/" # op.authorization_endpoint: "https://auth.dogar.dev/application/o/authorize/"
op.token_endpoint: "https://auth.dogar.dev/application/o/token/" # op.token_endpoint: "https://auth.dogar.dev/application/o/token/"
op.jwkset_path: "https://auth.dogar.dev/application/o/kibana/jwks/" # op.jwkset_path: "https://auth.dogar.dev/application/o/kibana/jwks/"
op.userinfo_endpoint: "https://auth.dogar.dev/application/o/userinfo/" # op.userinfo_endpoint: "https://auth.dogar.dev/application/o/userinfo/"
op.endsession_endpoint: "https://auth.dogar.dev/application/o/kibana/end-session/" # op.endsession_endpoint: "https://auth.dogar.dev/application/o/kibana/end-session/"
rp.post_logout_redirect_uri: "https://kibana.dogar.dev/security/logged_out" # rp.post_logout_redirect_uri: "https://kibana.dogar.dev/security/logged_out"
claims.principal: sub # claims.principal: sub
claims.groups: groups # claims.groups: groups

8
elasticsearch/kibana.yaml
View File

@@ -16,9 +16,9 @@ spec:
config: config:
server.publicBaseUrl: "https://kibana.dogar.dev" server.publicBaseUrl: "https://kibana.dogar.dev"
xpack.security.authc.providers: xpack.security.authc.providers:
oidc.authentik: # oidc.authentik:
order: 0 # order: 0
realm: authentik # realm: authentik
description: "Log in with Authentik" # description: "Log in with Authentik"
basic.basic1: basic.basic1:
order: 1 order: 1