225f77598a
Helm chart + Ansible role для Authelia 4.38: - Forward-auth для ingress-nginx через аннотации auth-url/auth-signin - OIDC provider: Gitea, Grafana, ArgoCD, MinIO, Vault, Nextcloud - SQLite default или PostgreSQL; опциональный Redis для сессий - RSA ключ OIDC генерируется автоматически если не задан в vault - ConfigMap authelia-forward-auth с готовыми аннотациями для любого сервиса - README: install, users, protect service, OIDC per-service, debug, test
26 lines
779 B
YAML
26 lines
779 B
YAML
---
|
|
# Authelia users_database.yml — file-based authentication backend.
|
|
# Passwords must be Argon2id hashes (see README for generation command).
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: {{ include "authelia.name" . }}-users
|
|
namespace: {{ .Release.Namespace }}
|
|
labels:
|
|
{{- include "authelia.labels" . | nindent 4 }}
|
|
type: Opaque
|
|
stringData:
|
|
users_database.yml: |
|
|
users:
|
|
{{- range $username, $user := .Values.users }}
|
|
{{ $username }}:
|
|
disabled: {{ $user.disabled | default false }}
|
|
displayname: {{ $user.displayname | quote }}
|
|
password: {{ $user.password | quote }}
|
|
email: {{ $user.email | quote }}
|
|
groups:
|
|
{{- range $user.groups }}
|
|
- {{ . | quote }}
|
|
{{- end }}
|
|
{{- end }}
|