Merge "Multi-tenant - Dex-aio workload-target phase"
This commit is contained in:
commit
bbff8b6bc9
@ -0,0 +1,17 @@
|
||||
# DEX-AIO Workload Service
|
||||
|
||||
The "*kustomization*" of dex-aio service is achieved through replacement transformer and patches.
|
||||
The rationale for supporting two different kustomization approaches is values for Dex service are shared with its corresponding API server.
|
||||
The replacement transformer/catalogue avoids duplication of variables/values avoiding configuration errors (DRY: Don't Repeat Yourself principle).
|
||||
The LDAP values are only used for the LDAP backend so supporting through patchesStrategyMerge avoids "complexity", e.i., the need to support a catalog + replacement rules.
|
||||
|
||||
## Dex Dependent Variables/Values
|
||||
Dex dependent values are collected in a catalogue located at *manifests/function/treasuremap-base-catalogues/utility.yaml*.
|
||||
Some of these values are common to the Dex service and API Server/OIDC flags (DRY principle).
|
||||
|
||||
Dex values are substituted using replacement transformer and the replacement rules for the Dex service can be found in *manifests/function/dex-aio/replacements*.
|
||||
|
||||
> NOTE: The replacement transformer is invoked in *treasuremap/manifests/type/multi-tenant/target/workload/replacements/kustomization.yaml*.
|
||||
|
||||
## LDAP Dependent Variables/Values
|
||||
The LDAP dependent values are kustomized through the *patchesStrategyMerge* and the values for the LDAP backend can be found in *./dex-aio-helm-patch.yaml*.
|
@ -0,0 +1,19 @@
|
||||
apiVersion: helm.toolkit.fluxcd.io/v2beta1
|
||||
kind: HelmRelease
|
||||
metadata:
|
||||
name: dex-aio
|
||||
namespace: default
|
||||
spec:
|
||||
values:
|
||||
params:
|
||||
ldap:
|
||||
bind_password: "your LDAP bind password"
|
||||
name: "LDAP TEST SERVICES - MULTI-TENANT"
|
||||
config:
|
||||
host: "your LDAP FQDN"
|
||||
bind_dn: "your LDAP bind username"
|
||||
username_prompt: SSO Username
|
||||
user_search:
|
||||
base_dn: dc=testservices,dc=test,dc=com
|
||||
group_search:
|
||||
base_dn: ou=groups,dc=testservices,dc=test,dc=com
|
@ -7,3 +7,7 @@ resources:
|
||||
- ../../../../function/helm-chart-repository/
|
||||
- ../../../../function/local-storage
|
||||
- ../../../../composite/lma-infra
|
||||
- ../../../../function/dex-aio
|
||||
|
||||
patchesStrategicMerge:
|
||||
- dex-aio/dex-aio-helm-patch.yaml
|
||||
|
@ -1,6 +1,7 @@
|
||||
resources:
|
||||
- ../../../../../composite/storage-cluster/replacements
|
||||
- ../../../../../function/ingress/replacements
|
||||
- ../../../../../function/dex-aio/replacements
|
||||
- ../../../../../function/sip/replacements
|
||||
- ../../../../../function/synclabeller/replacements
|
||||
- ../../../../../function/vino/replacements
|
||||
|
Loading…
Reference in New Issue
Block a user