DevFW-CICD/stacks
DevFW-CICD/stacks
14
0
Fork 2
Code Issues 1 Pull requests 3 Projects Releases Packages Wiki Activity Actions

feat(sso): configure sso for ArgoCD

Browse source
This commit is contained in:
franz.germann 2025-08-15 15:10:55 +02:00
parent 699b6cedcb
commit 2eab9bd80b
2 changed files with 12 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

13
template/stacks/core/argocd/values.yaml
View file

@ -5,6 +5,16 @@ configs:
params: params:
server.insecure: true server.insecure: true
cm: cm:
oidc.config: |
name: FORGEJO
issuer: https://{{{ .Env.DOMAIN_DEX }}}
clientID: controller-argocd-dex
clientSecret: $dex-argo-client:clientSecret
requestedScopes:
- openid
- profile
- email
- groups
application.resourceTrackingMethod: annotation application.resourceTrackingMethod: annotation
timeout.reconciliation: 60s timeout.reconciliation: 60s
resource.exclusions: | resource.exclusions: |
@ -18,10 +28,9 @@ configs:
- CiliumIdentity - CiliumIdentity
clusters: clusters:
- "*" - "*"
accounts.provider-argocd: apiKey
url: https://{{{ .Env.DOMAIN_ARGOCD }}} url: https://{{{ .Env.DOMAIN_ARGOCD }}}
rbac: rbac:
policy.csv: 'g, provider-argocd, role:admin' policy.csv: 'g, DevFW, role:admin'
tls: tls:
certificates: certificates:

2
template/stacks/core/dex/values.yaml
View file

@ -67,7 +67,7 @@ config:
- id: controller-argocd-dex - id: controller-argocd-dex
name: ArgoCD Client name: ArgoCD Client
redirectURIs: redirectURIs:
- "http://{{{ .Env.DOMAIN_ARGOCD }}}/auth/callback" - "https://{{{ .Env.DOMAIN_ARGOCD }}}/auth/callback"
secretEnv: "OIDC_DEX_ARGO_CLIENT_SECRET" secretEnv: "OIDC_DEX_ARGO_CLIENT_SECRET"
- id: grafana - id: grafana
redirectURIs: redirectURIs: