soukaina/Argocd-test
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

change placement

Browse Source
This commit is contained in:
soukainna
2023-07-24 11:51:07 +02:00
parent dc700121be
commit 235dfcf4b9
38 changed files with 0 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

65
mobility-accounts/config.yaml Normal file
View File

@@ -0,0 +1,65 @@
dev_env: true
storage:
db:
mongodb:
uri:
db_name:
collections:
users: users
kv:
type: etcd
etcd:
endpoints: etcd:2379
prefix: mobilityaccounts/
services:
grpc:
enable: true
port: 8080
oidc_provider:
enable: true
csrf_key: 32-byte-long-auth-key-----------
port: 80
namespaces:
parcoursmob:
namespace: parcoursmob
secret_key: some-cool-secret-that-is-32bytes
templates_dir: oidc-provider/templates/parcoursmob
match_claims:
groups: groups
first_name: first_name
last_name: last_name
email: email
display_name: display_name
"urn:cms:personal-informations:read": personal_information
"urn:cms:civil-status:read": civil_status
"urn:cms:favorites:read": favorites
"urn:cms:driving-licence:read": driving_licence
"urn:cms:ice-contacts:read": ice
# "urn:cms:fr-caf-information:read": fr_caf_information
# "urn:cms:fr-dgfip-information:read": fr_dgfip_information
# "urn:cms:fr-mesri-information:read": fr_mesri_information
clients:
- id: abcdef
oidc: true
secret: $2y$10$0GwBc17u9HjZnVlFjhIv2u.Jq..5NyzdUENpGa8jUtok2zHj/STmm
token_endpoint_auth_method: client_secret_post
response_types:
- code
grant_types:
- authorization_code
redirect_uris:
- https://openidconnect.net/callback
- https://psteniusubi.github.io/oidc-tester/authorization-code-flow.html
- http://localhost:9000/api/oauth2/callback
scopes:
- openid
- profile
- groups
- first_name
- last_name
- display_name
- email
- urn:cms:personal-informations:read

64
mobility-accounts/deployment.yaml Normal file
View File

@@ -0,0 +1,64 @@
apiVersion: apps/v1
kind: Deployment
metadata:
name: test-coopgo-mobility-accounts
spec:
replicas: 1
template:
spec:
containers:
- name: mobility-accounts
image: docker.io/library/mobility-accounts-v3:local
ports:
- name: grpc
containerPort: 8080
protocol: TCP
- name: http
containerPort: 80
protocol: TCP
env:
- name: STORAGE_DB_MONGODB_URI
valueFrom:
secretKeyRef:
name: db-secret
key: storage_db_mongodb_uri
- name: STORAGE_DB_MONGODB_DB_NAME
valueFrom:
secretKeyRef:
name: db-secret
key: storage_db_mongodb_db_name
- name: SERVICES_OIDC_PROVIDER_CSRF_KEY
valueFrom:
secretKeyRef:
name: mobility-account-secret
key: services_oidc_provider_csrf_key
- name: SERVICES_OIDC_PROVIDER_NAMESPACES_PARCOURSMOB_SECRET_KEY
valueFrom:
secretKeyRef:
name: mobility-account-secret
key: services_oidc_provider_namespaces_parcoursmob_secret_key
- name: SERVICES_OIDC_PROVIDER_NAMESPACES_PARCOURSMOB_CLIENTS_ID
valueFrom:
secretKeyRef:
name: mobility-account-secret
key: services_oidc_provider_namespaces_parcoursmob_clients_id
- name: SERVICES_OIDC_PROVIDER_NAMESPACES_PARCOURSMOB_CLIENTS_SECRET
valueFrom:
secretKeyRef:
name: mobility-account-secret
key: services_oidc_provider_namespaces_parcoursmob_clients_secret
volumeMounts:
- name: mobility-accounts-config-volume
mountPath: /config.yaml
subPath: config.yaml
imagePullSecrets:
- name: regcred
volumes:
- name: mobility-accounts-config-volume
configMap:
name: test-mobility-accounts-config
items:
- key: config.yaml
path: config.yaml

16
mobility-accounts/kustomization.yaml Normal file
View File

@@ -0,0 +1,16 @@
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
commonLabels:
app.kubernetes.io/name: test-coopgo-mobility-accounts
app.kubernetes.io/instance: test-coopgo-mobility-accounts
configMapGenerator:
- name: test-mobility-accounts-config
files:
- config.yaml
resources:
- deployment.yaml
- service.yaml
- sealed-mobility-account-secret.yaml

24
mobility-accounts/sealed-mobility-account-secret.yaml Normal file
View File

@@ -0,0 +1,24 @@
apiVersion: bitnami.com/v1alpha1
kind: SealedSecret
metadata:
annotations:
sealedsecrets.bitnami.com/namespace-wide: "true"
creationTimestamp: null
name: mobility-account-secret
namespace: argocd-test
spec:
encryptedData:
services_oidc_provider_csrf_key: AgCN7Vcaid7r3SggtT6BH2IHyfNG1btvp3BF/hXnA5ofI9pnSArskvnNHdqzLL+GIzXu5iJnM+6YJsp4JKi6G8TcyQ9tpQneDmPiJCjUp2+TIPilJ+4DAjQ+ffdFKo/HGi3Viq0AAYy4225UeGS7734rm0reiTPQ5Ntfd8gyxdXHPQTuB51a5NMWz/TAIY4+Vlpvmgo+uJ4faysZ61ydRq5M7Um2rBaawCypcWgbsOWXUip4Zi2BaQnEkQJDsC4LfAFD83TRuY0eKc5uqfuIHqNzIHyVJMPV8q8INbgCCsUkWTFLqSEcChCSikAisisxAWAMULpb72Canspskd7MtnHzavE3oypWp5K6LCLF1W39R+o+Gr9a2jFskgQHZ9rNi2LF2gUHHLuPhIbDC1Fb59LOpxSgxZn8kQHoF/SBtHdTEmChDe8xMBa80x3P9l3S7mt7r6AIjv162/EWcAJHO60V8b94qnGHS43+tc9YMYjGOlHFSP0ubJEa/5deKVi8Zvj9/+n5hs0bkYITGE0IYnGMiPTcHnJ4chkt8nqGXF/KJVmrLN0uNp+3y4ro+/n/UIxNPcRyrepvNME8xkdNbpUbUu1gUnud0xwb890S++fDbLD0edmGOf6amDqJoxN+onjOtFfmaA2/5RVG9kDoL84EHlYIXX4Nz2p5B1fOIi3SmcRrfjWkK5K87meEfOrJZxnc9YyoRokyWetk3ciXJLLMG1e8s86lGNyuUfg9OYcGAA==
services_oidc_provider_namespaces_parcoursmob_clients_id: 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
services_oidc_provider_namespaces_parcoursmob_clients_secret: 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
services_oidc_provider_namespaces_parcoursmob_secret_key: AgBuLLLEzlP8NG/ZL5iCLlPaxp1UM/NlT7JsMNW6qaks5GKXDa5KezWZdnSDIUVWcLAni09Tbg0ggJvMPb7Amst7on57x93oYI2/MW0LOKwMa/WUh43qZGcCrg8Fr0srbcEUYPhKzbvLTHSVoo0bjXRLpggTs3UzxJJ1oxIyaRC1RnPhQIQoN9W4Q9ptTo8de3ssbJgXeSbblAMwODvfVcuvL2HLK7qjUTbgqBAukEItmZf0cyEjryjMuXNd49F4aOoqcmvml5NdcEd1y+p+Id35NXchTpqRXSwBeTN3H1PA69McG4jn8RZkTmmLAYCOSi4JViYF9yUhwN0CA8kh/GwL8LxHipvXdgU9C47UqebKz2Icg5yVU0JajK/3exDxAvQCoCejDUtZRABp1RHeFwq8HFv9EcgmndWWZ6DUzElOOfAXrQR629TW3vCLW2bwLIZa1duhDiQ2jGbfOojomKxry2oBtzBcHnz2qGB7hQ1y2oDuJx03jwFU5bWuZFJan5EXZnrKYW7KlAwdZKHI6d3gcuoubRhPQyJnRhfVBzeFYDG+5mT/rgMjTUNgNid4itDiumYh/gX4LSFKltX4wkAq89lmxmz6rRW4bXxbIB6Rv97guKh1+ydMzRVBd6XYIZqZjeKxlhtk70KNX65ANQ5x6VLwC9cXkclAinIKeDsIeedzjIL4HZFXyCK82wf+ES5nvJEYV4IUrPdYfwHFfUCWpj22Z5IPFkmaI1++zx0bWQ==
template:
metadata:
annotations:
sealedsecrets.bitnami.com/managed: "true"
sealedsecrets.bitnami.com/namespace-wide: "true"
creationTimestamp: null
name: mobility-account-secret
namespace: argocd-test
type: Opaque

12
mobility-accounts/service.yaml Normal file
View File

@@ -0,0 +1,12 @@
apiVersion: v1
kind: Service
metadata:
name: test-coopgo-mobility-accounts-svc
spec:
ports:
- name: grpc
port: 8080
protocol: TCP
- name: http
port: 80
protocol: TCP