Added oauth2 proxy
This commit is contained in:
Ultradesu
@@ -13,6 +13,29 @@ spec:
|
||||
- X-Auth-Request-Groups
|
||||
---
|
||||
apiVersion: traefik.io/v1alpha1
|
||||
kind: Middleware
|
||||
metadata:
|
||||
name: keycloak-auth-redirect
|
||||
spec:
|
||||
errors:
|
||||
status:
|
||||
- "401"
|
||||
service:
|
||||
name: oauth2-proxy-redirect
|
||||
port: 80
|
||||
query: /oauth2/sign_in?rd={url}
|
||||
---
|
||||
apiVersion: v1
|
||||
kind: Service
|
||||
metadata:
|
||||
name: oauth2-proxy-redirect
|
||||
spec:
|
||||
type: ExternalName
|
||||
externalName: oauth2-proxy.oauth2-proxy.svc.cluster.local
|
||||
ports:
|
||||
- port: 80
|
||||
---
|
||||
apiVersion: traefik.io/v1alpha1
|
||||
kind: IngressRoute
|
||||
metadata:
|
||||
name: secret-reader
|
||||
@@ -22,10 +45,16 @@ spec:
|
||||
entryPoints:
|
||||
- websecure
|
||||
routes:
|
||||
- match: Host(`secret-reader.hexor.cy`) && PathPrefix(`/oauth2/`)
|
||||
kind: Rule
|
||||
services:
|
||||
- name: oauth2-proxy-redirect
|
||||
port: 80
|
||||
- match: Host(`secret-reader.hexor.cy`)
|
||||
kind: Rule
|
||||
middlewares:
|
||||
- name: keycloak-auth
|
||||
- name: keycloak-auth-redirect
|
||||
services:
|
||||
- name: secret-reader
|
||||
port: 80
|
||||
|
||||
Reference in New Issue
Block a user