eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/argocd/manifests/authentik
History
Erich Blume 86317315ed C0: remove argocd OIDC client_secret wiring 
Now that argocd's Authentik OAuth2 client is public (PKCE-only), the
client_secret plumbing is dead code:

- delete argocd-oidc-authentik ExternalSecret and drop it from kustomization
- remove AUTHENTIK_ARGOCD_CLIENT_SECRET env from authentik-worker
- remove argocd-client-secret mapping from authentik-config ExternalSecret

The argocd-client-secret field in the 1Password "Authentik (blumeops)"
item is now unreferenced and can be deleted there.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-21 10:38:26 -07:00
..
configmap-blueprint.yaml C0: argocd OIDC — switch to public client for CLI SSO 2026-04-21 10:34:39 -07:00
deployment-redis.yaml
deployment-server.yaml
deployment-worker.yaml C0: remove argocd OIDC client_secret wiring 2026-04-21 10:38:26 -07:00
external-secret.yaml C0: remove argocd OIDC client_secret wiring 2026-04-21 10:38:26 -07:00
ingress-tailscale.yaml
kustomization.yaml Deploy authentik 2026.2.2 container to ringtail 2026-04-08 10:56:50 -07:00
service-redis.yaml
service.yaml