scottk/homelab
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/homelab.git synced 2025-10-29 17:12:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
0149a02e4cdb828d303eda85a272449aa1ab7198
homelab/k8s/infra/vpn/netbird/backend/patches/add-relay-config.yaml
Vegard Hagen 0149a02e4c feat(netbird): replace dashboard helm chart with plain manifests 
imho the chart doesn't add much here
2025-01-04 21:53:23 +01:00

93 lines
3.2 KiB
YAML
Raw Blame History

---
apiVersion: v1
kind: ConfigMap
metadata:
name: netbird-backend-management
data:
management.tmpl.json: |-
{
"Stuns": [
{
"Proto": "udp",
"URI": "${NETBIRD_STUN_URI}",
"Username": "",
"Password": null
}
],
"TURNConfig": {
"Turns": [
{
"Proto": "udp",
"URI": "${NETBIRD_TURN_URI}",
"Username": "${NETBIRD_TURN_USER}",
"Password": "${NETBIRD_TURN_PASSWORD}"
}
],
"CredentialsTTL": "12h",
"Secret": "secret",
"TimeBasedCredentials": false
},
"Signal": {
"Proto": "${NETBIRD_SIGNAL_PROTOCOL}",
"URI": "${NETBIRD_SIGNAL_URI}",
"Username": "",
"Password": null
},
"Datadir": "",
"HttpConfig": {
"Address": "0.0.0.0:80",
"AuthAudience": "${NETBIRD_AUTH_AUDIENCE}",
"AuthUserIDClaim": "${NETBIRD_AUTH_USER_ID_CLAIM:-sub}",
"CertFile": "${NETBIRD_MGMT_API_CERT_FILE}",
"CertKey": "${NETBIRD_MGMT_API_CERT_KEY_FILE}",
"OIDCConfigEndpoint": "${NETBIRD_AUTH_OIDC_CONFIGURATION_ENDPOINT}"
},
"IdpManagerConfig": {
"ManagerType": "${NETBIRD_IDP_MANAGER_TYPE}",
"${NETBIRD_IDP_MANAGER_TYPE^}ClientCredentials": {
"ClientID": "${NETBIRD_IDP_CLIENT_ID}",
"ClientSecret": "${NETBIRD_IDP_CLIENT_SECRET}",
"GrantType": "${NETBIRD_IDP_GRANT_TYPE}",
"Audience": "${NETBIRD_IDP_AUTH0_AUDIENCE}",
"AuthIssuer": "${NETBIRD_IDP_AUTH0_AUTH_ISSUER}",
"AdminEndpoint": "${NETBIRD_IDP_KEYCLOAK_ADMIN_ENDPOINT}",
"TokenEndpoint": "${NETBIRD_IDP_KEYCLOAK_TOKEN_ENDPOINT}"
}
},
"DeviceAuthorizationFlow": {
"Provider": "${NETBIRD_AUTH_DEVICE_AUTH_PROVIDER}",
"ProviderConfig": {
"Audience": "${NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE}",
"ClientID": "${NETBIRD_AUTH_DEVICE_AUTH_CLIENT_ID}",
"DeviceAuthEndpoint": "${NETBIRD_AUTH_DEVICE_AUTH_DEVICE_AUTHORIZATION_ENDPOINT}",
"Domain": "${NETBIRD_AUTH_DEVICE_AUTH_AUTHORITY}",
"TokenEndpoint": "${NETBIRD_AUTH_DEVICE_AUTH_TOKEN_ENDPOINT}",
"Scope": "${NETBIRD_AUTH_DEVICE_AUTH_SCOPE}",
"UseIDToken": "${NETBIRD_AUTH_DEVICE_AUTH_USE_ID_TOKEN:-false}"
}
},
"Relay": {
"Addresses": ["${NETBIRD_RELAY_URI}"],
"CredentialsTTL": "24h",
"Secret": "${NETBIRD_RELAY_SECRET}"
}
}
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: netbird-backend-management
spec:
template:
spec:
initContainers:
- name: configure
env:
- name: NETBIRD_RELAY_URI
value: "rels://netbird.stonegarden.dev:443"
- name: NETBIRD_RELAY_SECRET
valueFrom:
secretKeyRef:
key: authSecret
name: netbird-relay-credentials
Reference in New Issue View Git Blame Copy Permalink