viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
infra/stacks/k8s-dashboard
History
Viktor Barzin ea1e4f793b revert(k8s-dashboard): restore forward-auth ingress (apiserver OIDC unresolved) 
Dashboard back to the working forward-auth + kong-proxy state. The
oauth2-proxy SSO path is blocked by a deeper issue: the apiserver rejects
ALL valid Authentik OIDC tokens (both legacy --oidc-* flags and structured
AuthenticationConfiguration), despite verified signature, issuer, audience,
email_verified, synced clock, and reachable+trusted JWKS. Needs dedicated
apiserver-OIDC investigation. oauth2-proxy + k8s-dashboard Authentik app
left deployed (idle, harmless) pending that.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-05 09:19:10 +00:00
..
.terraform.lock.hcl Woodpecker CI deploy [CI SKIP] 2026-06-05 09:19:09 +00:00
authentik.tf fix(k8s-dashboard): use email_verified=true + groups scope mappings 2026-06-05 09:19:09 +00:00
main.tf revert(k8s-dashboard): restore forward-auth ingress (apiserver OIDC unresolved) 2026-06-05 09:19:10 +00:00
oauth2_proxy.tf fix(k8s-dashboard): use email_verified=true + groups scope mappings 2026-06-05 09:19:09 +00:00
providers.tf feat(k8s-dashboard): add Authentik OIDC app for dashboard SSO 2026-06-05 09:19:07 +00:00
secrets [ci skip] Move Terraform modules into stack directories 2026-02-22 14:38:14 +00:00
terragrunt.hcl [ci skip] Phase 3: Create 66 service stacks and migrate state 2026-02-22 13:56:34 +00:00