eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions

Add Authentik OIDC integration for Mealie

Browse source 
Configure Mealie as a public PKCE client in Authentik. Mealie's OIDC
flow runs client-side (Vue.js SPA) so it uses PKCE instead of a
client_secret. No 1Password secret or ExternalSecret needed.

- Add mealie.yaml blueprint to Authentik configmap (public client, admins group)
- Add OIDC env vars to Mealie deployment
- Update service docs

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Erich Blume 2026-03-16 21:15:21 -07:00
commit 5c5fd18cac
3 changed files with 75 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
docs/reference/services/mealie.md
View file

@ -30,6 +30,7 @@ Self-hosted recipe manager with a REST API. Part of the meal planning pipeline:
- Built-in meal planning and shopping lists
- Recipe import from URLs
- API token auth for automation
- OIDC login via [[authentik]] (public client with PKCE)
## Storage