CadolesKube
/
sso-kustom
14
0
Fork 0
Code Issues 19 Pull Requests 4 Projects Releases Wiki Activity

feat(components): moving hydra-maester as componenent 

This will prevent oauth2-client removal from hydra instances removal.
At the time if you deploy an hydra in your namespace for your app and
delete it, the hydra-maester CRD will be removed, but we don't want that.
More than one project will use this CRD.
This commit is contained in:
Philippe Caseiro 2023-12-22 10:02:25 +01:00
parent 86754cf518
commit 76b90e6c82
5 changed files with 25 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

0
resources/hydra/resources/hydra-maester/kustomization.yaml → components/hydra-maester/kustomization.yaml
View File

0
resources/hydra/resources/hydra-maester/resources/hydra-maester-deployment.yaml → components/hydra-maester/resources/hydra-maester-deployment.yaml
View File

0
resources/hydra/resources/hydra-maester/resources/hydra-maester-rbac.yaml → components/hydra-maester/resources/hydra-maester-rbac.yaml
View File

9
overlays/full/kustomization.yaml
View File

@ -5,13 +5,14 @@ resources:
- ../base - ../base
labels: labels:
- pairs: - pairs:
app.kubernetes.io/part-of: sso-kustom app.kubernetes.io/part-of: sso-kustom
app.kubernetes.io/component: auth app.kubernetes.io/component: auth
components: components:
- ../../components/hydra-maester
- ../../components/hydra-cnpg-database - ../../components/hydra-cnpg-database
- ../../components/hydra-oidc - ../../components/hydra-oidc
- ../../components/hydra-saml - ../../components/hydra-saml
- ../../components/hydra-sql - ../../components/hydra-sql
- ../../components/oidc-test - ../../components/oidc-test

41
resources/hydra/kustomization.yaml
View File

@ -2,35 +2,34 @@ apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization kind: Kustomization
resources: resources:
- ./resources/hydra-deployment.yaml - ./resources/hydra-deployment.yaml
- ./resources/hydra-service.yaml - ./resources/hydra-service.yaml
- ./resources/hydra-role.yaml - ./resources/hydra-role.yaml
- ./resources/hydra-rolebinding.yaml - ./resources/hydra-rolebinding.yaml
- ./resources/hydra-serviceaccount.yaml - ./resources/hydra-serviceaccount.yaml
- ./resources/hydra-migrate-job.yaml - ./resources/hydra-migrate-job.yaml
- ./resources/hydra-maester - ./resources/hydra-janitor-cronjob.yaml
- ./resources/hydra-janitor-cronjob.yaml
secretGenerator: secretGenerator:
- name: hydra-secret - name: hydra-secret
literals: literals:
- SECRETS_SYSTEM=ThisShouldBeAbsolutelyChanged - SECRETS_SYSTEM=ThisShouldBeAbsolutelyChanged
configMapGenerator: configMapGenerator:
- name: hydra-env - name: hydra-env
literals: literals:
- URLS_SELF_ISSUER=http://localhost:4444 - URLS_SELF_ISSUER=http://localhost:4444
- URLS_LOGIN=http://hydra-login-app/login - URLS_LOGIN=http://hydra-login-app/login
- URLS_CONSENT=http://hydra-consent-app/consent - URLS_CONSENT=http://hydra-consent-app/consent
- URLS_LOGOUT=http://hydra-logout-app/logout - URLS_LOGOUT=http://hydra-logout-app/logout
- HYDRA_SERVE_ALL_ARGS=--dev - HYDRA_SERVE_ALL_ARGS=--dev
- LOG_LEVEL=info - LOG_LEVEL=info
vars: vars:
- name: HYDRA_MIGRATE_JOB_NAME - name: HYDRA_MIGRATE_JOB_NAME
objref: objref:
name: hydra-migrate name: hydra-migrate
kind: Job kind: Job
apiVersion: batch/v1 apiVersion: batch/v1
fieldref: fieldref:
fieldpath: metadata.name fieldpath: metadata.name