viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
infra/.claude/reference
History
Viktor Barzin 8e44ccaa65 docs: dashboard access is forward-auth + token-paste (OIDC SSO blocked) 
Correct the docs I'd written for the (reverted) oauth2-proxy SSO. Reality:
apiserver OIDC rejects all Authentik tokens (design §12), so the dashboard
uses forward-auth (admits kubernetes-* groups) + per-namespace SA token-paste.
Updates authentication.md, multi-tenancy.md, service-catalog, authentik-state,
and add-user skill (onboarding now documents the dashboard token). oauth2-proxy
+ k8s-dashboard OIDC app noted as idle. [ci skip]

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-05 09:19:10 +00:00
..
authentik-state.md docs: dashboard access is forward-auth + token-paste (OIDC SSO blocked) 2026-06-05 09:19:10 +00:00
github-api.md [ci skip] Sunset Drone CI: remove all artifacts, DNS, configs, and references 2026-02-23 19:38:55 +00:00
known-issues.md add infrastructure agent team: 8 specialized agents + 14 diagnostic scripts 2026-03-15 02:01:07 +00:00
patterns.md anubis: per-site PoW reverse proxy on blog + kms + travel-blog 2026-05-10 00:06:21 +00:00
proxmox-inventory.md gpu: schedule off NFD label, not k8s-node1 hostname 2026-04-22 13:43:07 +00:00
service-catalog.md docs: dashboard access is forward-auth + token-paste (OIDC SSO blocked) 2026-06-05 09:19:10 +00:00
upgrade-config.json chore: add untracked stacks, scripts, and agent configs 2026-04-15 09:33:06 +00:00