Last active
February 25, 2022 16:28
-
-
Save purejgleason/14df06aa0cc03a8e7570906e7562c190 to your computer and use it in GitHub Desktop.
My OAuth2 Proxy deployment
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
apiVersion: apps/v1 | |
kind: Deployment | |
metadata: | |
labels: | |
app: ingress | |
name: oauth2-proxy | |
spec: | |
replicas: 1 | |
selector: | |
matchLabels: | |
app: ingress | |
template: | |
metadata: | |
labels: | |
app: ingress | |
spec: | |
containers: | |
- name: oauth2-proxy | |
image: "quay.io/oauth2-proxy/oauth2-proxy" | |
imagePullPolicy: IfNotPresent | |
args: | |
- --provider | |
- oidc | |
- --provider-display-name | |
- "My OIDC Provider" | |
- --client-id | |
- $CLIENT | |
- --client-secret | |
- $SECRET | |
- --redirect-url | |
- http://127.0.0.1:4180/oauth2/callback | |
- --oidc-issuer-url | |
- $ISSUER | |
- --cookie-secure=false | |
- --cookie-secret=MySimpleCookie0! | |
- --email-domain | |
- purepm.co | |
- --scope | |
- “openid email profile offline_access” | |
- --upstream=file:///dev/null | |
- --http-address=0.0.0.0:4180 | |
ports: | |
- containerPort: 4180 | |
name: http | |
protocol: TCP | |
- containerPort: 44180 | |
protocol: TCP | |
name: metrics | |
--- | |
apiVersion: v1 | |
kind: Service | |
metadata: | |
labels: | |
app: ingress | |
name: oauth2-proxy | |
spec: | |
ports: | |
- name: http | |
port: 4180 | |
protocol: TCP | |
targetPort: 4180 | |
selector: | |
k8s-app: oauth2-proxy |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment