blumeops/argocd/manifests/authentik/kustomization.yaml at 746435a9052d07d46e0a49ad63760428efe28dd7 - eblume/blumeops - Forgejo: Beyond coding. We Forge.

eblume/blumeops

Erich Blume 00e4dc46e3 Migrate Grafana OIDC from Dex to Authentik

- Add Authentik Blueprint (ConfigMap) defining Grafana OAuth2 provider,
  application, admins group, and policy binding
- Mount blueprint in worker, pass grafana client secret via env
- Switch Grafana auth.generic_oauth from Dex to Authentik endpoints
- Replace dex-oauth ExternalSecret with authentik-oauth

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-20 11:47:17 -08:00

13 lines

301 B

YAML

Raw Blame History

 ---
 apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 namespace: authentik
 resources:
   - external-secret.yaml
   - configmap-blueprint.yaml
   - deployment-server.yaml
   - deployment-worker.yaml
   - deployment-redis.yaml
   - service.yaml
   - service-redis.yaml
   - ingress-tailscale.yaml