57 lines
1.6 KiB
YAML
57 lines
1.6 KiB
YAML
executor: KubernetesExecutor
|
|
|
|
dags:
|
|
gitSync:
|
|
enabled: true
|
|
repo: git@github.com:idirbfs/dags.git
|
|
branch: main
|
|
rev: HEAD
|
|
depth: 1
|
|
maxFailures: 3
|
|
subPath: ""
|
|
sshKeySecret: airflow-gitsync-ssh
|
|
period: 60s
|
|
|
|
ingress:
|
|
apiServer:
|
|
enabled: true
|
|
ingressClassName: nginx
|
|
hosts:
|
|
- name: airflow.13.140.150.2.nip.io
|
|
tls:
|
|
enabled: false
|
|
path: "/"
|
|
pathType: "Prefix"
|
|
|
|
apiServer:
|
|
hostAliases:
|
|
- ip: "13.140.150.2"
|
|
hostnames:
|
|
- "keycloak.13.140.150.2.nip.io"
|
|
apiServerConfig: |
|
|
from flask_appbuilder.security.manager import AUTH_OAUTH
|
|
|
|
AUTH_TYPE = AUTH_OAUTH
|
|
AUTH_USER_REGISTRATION = True
|
|
AUTH_USER_REGISTRATION_ROLE = "Viewer"
|
|
|
|
OAUTH_PROVIDERS = [
|
|
{
|
|
"name": "keycloak",
|
|
"token_key": "access_token",
|
|
"icon": "fa-key",
|
|
"remote_app": {
|
|
"client_id": "airflow",
|
|
"client_secret": "93psJ7EWe95XEFf9MeWHKE5dbyNQpQnY",
|
|
"api_base_url": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect",
|
|
"request_token_url": None,
|
|
"access_token_url": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/token",
|
|
"authorize_url": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/auth",
|
|
"jwks_uri": "http://keycloak.13.140.150.2.nip.io/auth/realms/airflow-realm/protocol/openid-connect/certs",
|
|
"client_kwargs": {
|
|
"scope": "openid email profile"
|
|
}
|
|
}
|
|
}
|
|
]
|