43 lines
1.5 KiB
YAML
43 lines
1.5 KiB
YAML
apiVersion: apps/v1
|
|
kind: DaemonSet
|
|
metadata:
|
|
name: authelia
|
|
spec:
|
|
revisionHistoryLimit: 3
|
|
template:
|
|
spec:
|
|
containers:
|
|
- name: authelia
|
|
env:
|
|
# prevents 431 request header too large
|
|
# https://www.authelia.com/reference/guides/log-messages/#request-header-too-large
|
|
- name: AUTHELIA_SERVER_BUFFERS_READ
|
|
value: 16384
|
|
- name: AUTHELIA_SERVER_BUFFERS_WRITE
|
|
value: 16384
|
|
- name: AUTHELIA_STORAGE_POSTGRES_HOST
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: pg-authelia-app
|
|
key: host
|
|
- name: AUTHELIA_STORAGE_POSTGRES_DATABASE
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: pg-authelia-app
|
|
key: dbname
|
|
- name: AUTHELIA_STORAGE_POSTGRES_USERNAME
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: pg-authelia-app
|
|
key: username
|
|
- name: AUTHELIA_STORAGE_POSTGRES_PASSWORD
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: pg-authelia-app
|
|
key: password
|
|
# - name: TZ
|
|
# value: ...
|
|
|
|
# Overriding the definition from Helm because ArgoCD is mangling it for some reason
|
|
- name: AUTHELIA_IDENTITY_VALIDATION_RESET_PASSWORD_JWT_SECRET_FILE
|
|
value: "/secrets/internal/identity_validation.reset_password.jwt.hmac.key"
|