From 8ecd09734eed55ed1a6a39ac4ecd45ea477c3dca Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Moritz=20J=C3=B6rg?= Date: Sat, 14 Mar 2026 16:40:09 +0100 Subject: [PATCH] fix(dex): Add theme --- values/dex/values/values.yaml | 207 ++++++++++++++++++---------------- 1 file changed, 108 insertions(+), 99 deletions(-) diff --git a/values/dex/values/values.yaml b/values/dex/values/values.yaml index 7b91538c..258c92c9 100644 --- a/values/dex/values/values.yaml +++ b/values/dex/values/values.yaml @@ -14,6 +14,15 @@ config: mode: disable web: http: 0.0.0.0:5556 + frontend: + # theme: light + theme: coreos + issuer: "Oceanbox" + issuerUrl: "https://oceanbox.io" + # logoURL: theme/logo.png + # dir: "" + telemetry: + http: 0.0.0.0:5558 oauth2: skipApprovalScreen: true expiry: @@ -24,24 +33,24 @@ config: absoluteLifetime: "720h" connectors: - - type: microsoft - id: microsoft - name: Microsoft - config: - clientID: "43667ac0-37e1-422f-99fc-50a699bb255c" - clientSecret: $MICROSOFT_CLIENT_SECRET - redirectURI: https://auth.adm.oceanbox.io/callback + - type: microsoft + id: microsoft + name: Microsoft + config: + clientID: "43667ac0-37e1-422f-99fc-50a699bb255c" + clientSecret: $MICROSOFT_CLIENT_SECRET + redirectURI: https://auth.adm.oceanbox.io/callback staticClients: - # - id: dex - # name: Dex - # secret: $CLIENT_SECRET_DEX - # redirectURIs: - # - https://idp.beta.oceanbox.io/dex/callback - # - https://idp.dev.oceanbox.io/dex/callback - # - https://idp.oceanbox.io/dex/callback - # - https://idp.srv.oceanbox.io/dex/callback - # - id: atlantis + # - id: dex + # name: Dex + # secret: $CLIENT_SECRET_DEX + # redirectURIs: + # - https://idp.beta.oceanbox.io/dex/callback + # - https://idp.dev.oceanbox.io/dex/callback + # - https://idp.oceanbox.io/dex/callback + # - https://idp.srv.oceanbox.io/dex/callback + # - id: atlantis # name: Atlantis # secret: $CLIENT_SECRET_ATLANTIS # redirectURIs: @@ -51,27 +60,27 @@ config: # - https://oceanbox.app/signin-oidc # - https://atlantis.srv.oceanbox.io/signin-oidc - - id: atlantis_dev - name: Atlantis (dev) - secret: $CLIENT_SECRET_ATLANTIS_DEV - redirectURIs: - - https://maps.dev.oceanbox.io/signin-oidc - - https://atlantis.local.oceanbox.io:8080/signin-oidc - - https://codex.local.oceanbox.io:8080/signin-oidc - - https://simkir-maps.dev.oceanbox.io/signin-oidc - - https://jonas-atlantis.dev.oceanbox.io/signin-oidc - - https://atlantis.beta.oceanbox.io/signin-oidc - - https://stig-atlantis.dev.oceanbox.io/signin-oidc - - https://codex.local.oceanbox.io:10380/signin-oidc - - https://ole-atlantis.dev.oceanbox.io/signin-oidc - - https://bast-atlantis.dev.oceanbox.io/signin-oidc - - https://mrtz-atlantis.dev.oceanbox.io/signin-oidc - - https://codex.dev.tos.obx/signin-oidc - - https://simkir-codex.dev.oceanbox.io/signin-oidc - - https://simkir-atlantis.dev.oceanbox.io/signin-oidc - - https://codex.dev.oceanbox.io/signin-oidc + - id: atlantis_dev + name: Atlantis (dev) + secret: $CLIENT_SECRET_ATLANTIS_DEV + redirectURIs: + - https://maps.dev.oceanbox.io/signin-oidc + - https://atlantis.local.oceanbox.io:8080/signin-oidc + - https://codex.local.oceanbox.io:8080/signin-oidc + - https://simkir-maps.dev.oceanbox.io/signin-oidc + - https://jonas-atlantis.dev.oceanbox.io/signin-oidc + - https://atlantis.beta.oceanbox.io/signin-oidc + - https://stig-atlantis.dev.oceanbox.io/signin-oidc + - https://codex.local.oceanbox.io:10380/signin-oidc + - https://ole-atlantis.dev.oceanbox.io/signin-oidc + - https://bast-atlantis.dev.oceanbox.io/signin-oidc + - https://mrtz-atlantis.dev.oceanbox.io/signin-oidc + - https://codex.dev.tos.obx/signin-oidc + - https://simkir-codex.dev.oceanbox.io/signin-oidc + - https://simkir-atlantis.dev.oceanbox.io/signin-oidc + - https://codex.dev.oceanbox.io/signin-oidc - # - id: sorcerer + # - id: sorcerer # name: Sorcerer # secret: $CLIENT_SECRET_SORCERER # redirectURIs: @@ -80,64 +89,64 @@ config: # - https://sorcerer.ekman.oceanbox.io/signin-oidc # - https://sorcerer.data.oceanbox.io/signin-oidc - - id: sorcerer_dev - name: Sorcerer (dev) - secret: $CLIENT_SECRET_SORCERER_DEV - redirectURIs: - - https://simkir-sorcerer.ekman.oceanbox.io/signin-oidc - - https://jonas-sorcerer.ekman.oceanbox.io/signin-oidc - - https://stig-sorcerer.dev.vtn.obx/signin-oidc - - https://simkir-sorcerer.dev.vtn.obx/signin-oidc - - https://ole-sorcerer.ekman.oceanbox.io/signin-oidc - - https://sorcerer.vtn.oceanbox.io/signin-oidc - - https://mrtz-sorcerer.dev.vtn.obx/signin-oidc - - https://sorcerer.ekman.oceanbox.io/signin-oidc - - https://bast-sorcerer.ekman.oceanbox.io/signin-oidc - - https://sorcerer.data.oceanbox.io/signin-oidc - - https://ole-sorcerer.dev.vtn.obx/signin-oidc - - https://stig-sorcerer.ekman.oceanbox.io/signin-oidc + - id: sorcerer_dev + name: Sorcerer (dev) + secret: $CLIENT_SECRET_SORCERER_DEV + redirectURIs: + - https://simkir-sorcerer.ekman.oceanbox.io/signin-oidc + - https://jonas-sorcerer.ekman.oceanbox.io/signin-oidc + - https://stig-sorcerer.dev.vtn.obx/signin-oidc + - https://simkir-sorcerer.dev.vtn.obx/signin-oidc + - https://ole-sorcerer.ekman.oceanbox.io/signin-oidc + - https://sorcerer.vtn.oceanbox.io/signin-oidc + - https://mrtz-sorcerer.dev.vtn.obx/signin-oidc + - https://sorcerer.ekman.oceanbox.io/signin-oidc + - https://bast-sorcerer.ekman.oceanbox.io/signin-oidc + - https://sorcerer.data.oceanbox.io/signin-oidc + - https://ole-sorcerer.dev.vtn.obx/signin-oidc + - https://stig-sorcerer.ekman.oceanbox.io/signin-oidc envVars: -- name: DEX_DB_USER - valueFrom: - secretKeyRef: - name: dex-db-app - key: username -- name: DEX_DB_PASSWORD - valueFrom: - secretKeyRef: - name: dex-db-app - key: password -- name: MICROSOFT_CLIENT_SECRET - valueFrom: - secretKeyRef: - name: dex-microsoft - key: clientSecret -# - name: CLIENT_SECRET_DEX -# valueFrom: -# secretKeyRef: -# name: dex-clients -# key: dex -# - name: CLIENT_SECRET_ATLANTIS -# valueFrom: -# secretKeyRef: -# name: dex-clients -# key: atlantis -- name: CLIENT_SECRET_ATLANTIS_DEV - valueFrom: - secretKeyRef: - name: dex-clients - key: atlantis_dev -# - name: CLIENT_SECRET_SORCERER -# valueFrom: -# secretKeyRef: -# name: dex-clients -# key: sorcerer -- name: CLIENT_SECRET_SORCERER_DEV - valueFrom: - secretKeyRef: - name: dex-clients - key: sorcerer_dev + - name: DEX_DB_USER + valueFrom: + secretKeyRef: + name: dex-db-app + key: username + - name: DEX_DB_PASSWORD + valueFrom: + secretKeyRef: + name: dex-db-app + key: password + - name: MICROSOFT_CLIENT_SECRET + valueFrom: + secretKeyRef: + name: dex-microsoft + key: clientSecret + # - name: CLIENT_SECRET_DEX + # valueFrom: + # secretKeyRef: + # name: dex-clients + # key: dex + # - name: CLIENT_SECRET_ATLANTIS + # valueFrom: + # secretKeyRef: + # name: dex-clients + # key: atlantis + - name: CLIENT_SECRET_ATLANTIS_DEV + valueFrom: + secretKeyRef: + name: dex-clients + key: atlantis_dev + # - name: CLIENT_SECRET_SORCERER + # valueFrom: + # secretKeyRef: + # name: dex-clients + # key: sorcerer + - name: CLIENT_SECRET_SORCERER_DEV + valueFrom: + secretKeyRef: + name: dex-clients + key: sorcerer_dev ingress: enabled: true @@ -147,14 +156,14 @@ ingress: nginx.ingress.kubernetes.io/ssl-redirect: "true" nginx.ingress.kubernetes.io/backend-protocol: HTTP hosts: - - host: auth.adm.oceanbox.io - paths: - - path: / - pathType: ImplementationSpecific + - host: auth.adm.oceanbox.io + paths: + - path: / + pathType: ImplementationSpecific tls: - - secretName: auth.adm.oceanbox.io-tls - hosts: - - auth.adm.oceanbox.io + - secretName: auth.adm.oceanbox.io-tls + hosts: + - auth.adm.oceanbox.io resources: limits: