34 lines
1.2 KiB
YAML
34 lines
1.2 KiB
YAML
config:
|
|
existingSecret: oauth2-proxy-prometheus
|
|
cookie_secure: true
|
|
set_xauthrequest: true
|
|
cookie_samesite: "lax"
|
|
redirect_url: https://prometheus.idir-belfares.fr/oauth2/callback
|
|
|
|
extraArgs:
|
|
provider: oidc
|
|
skip-oidc-discovery: "true"
|
|
login-url: "https://keycloak.idir-belfares.fr/auth/realms/k8s-apps/protocol/openid-connect/auth"
|
|
redeem-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/token"
|
|
oidc-issuer-url: "https://keycloak.idir-belfares.fr/auth/realms/k8s-apps"
|
|
oidc-jwks-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/certs"
|
|
email-domain: "*"
|
|
insecure-oidc-allow-unverified-email: "true"
|
|
upstream: "http://monitoring-kube-prometheus-prometheus.monitoring.svc.cluster.local:9090"
|
|
|
|
ingress:
|
|
enabled: true
|
|
className: nginx
|
|
annotations:
|
|
cert-manager.io/cluster-issuer: letsencrypt-prod
|
|
nginx.ingress.kubernetes.io/proxy-buffer-size: "16k"
|
|
nginx.ingress.kubernetes.io/proxy-buffers-number: "4"
|
|
hosts:
|
|
- prometheus.idir-belfares.fr
|
|
tls:
|
|
- secretName: prometheus-tls
|
|
hosts:
|
|
- prometheus.idir-belfares.fr
|
|
path: /
|
|
pathType: Prefix
|