feat: Authentik | set up authentik + dependencies

Includes redis and changes to pihole, nginx, prometheus and gitea
2024-10-12 09:31:50 +05:00
parent 5a7fccdfa1
commit 80a6b9c49c
8 changed files with 161 additions and 5 deletions
--- a/helm/values/gitea.values.yaml
+++ b/helm/values/gitea.values.yaml
@@ -13,6 +13,7 @@ ingress:
  annotations:
    cert-manager.io/cluster-issuer: cloudflare-issuer
    cert-manager.io/private-key-algorithm: ED25519
+    cert-manager.io/acme-challenge-type: dns01
  hosts:
    - host: git.dogar.dev
      paths:
@@ -53,6 +54,15 @@ gitea:
      STORAGE_TYPE: local
    service:
      DISABLE_REGISTRATION: true
+    oauth2_client:
+      ENABLE_AUTO_REGISTRATION: true
+  oauth:
+    - name: "authentik"
+      provider: "openidConnect"
+      existingSecret: gitea-oauth
+      autoDiscoverUrl: "https://auth.dogar.dev/application/o/gitea/.well-known/openid-configuration"
+      iconUrl: "https://goauthentik.io/img/icon.png"
+      scopes: "email profile"
  additionalConfigFromEnvs:
    - name: GITEA__DATABASE__PASSWD
      valueFrom: