1package kube
2
3// To update run:
4// kubectl apply -f configmap.yaml
5// kubectl scale --replicas=0 deployment/proxy
6// kubectl scale --replicas=1 deployment/proxy
7configMap: authproxy: "authproxy.cfg": """
8 # Google Auth Proxy Config File
9 ## https://github.com/bitly/google_auth_proxy
10
11 ## <addr>:<port> to listen on for HTTP clients
12 http_address = \"0.0.0.0:4180\"
13
14 ## the OAuth Redirect URL.
15 redirect_url = \"https://auth.example.com/oauth2/callback\"
16
17 ## the http url(s) of the upstream endpoint. If multiple, routing is based on path
18 upstreams = [
19 # frontend
20 \"http://frontend-waiter:7080/dpr/\",
21 \"http://frontend-maitred:7080/ui/\",
22 \"http://frontend-maitred:7080/ui\",
23 \"http://frontend-maitred:7080/report/\",
24 \"http://frontend-maitred:7080/report\",
25 \"http://frontend-maitred:7080/static/\",
26 # kitchen
27 \"http://kitchen-chef:8080/visit\",
28 # infrastructure
29 \"http://download:7080/file/\",
30 \"http://download:7080/archive\",
31 \"http://tasks:7080/tasks\",
32 \"http://tasks:7080/tasks/\",
33 ]
34
35 ## pass HTTP Basic Auth, X-Forwarded-User and X-Forwarded-Email information to upstream
36 pass_basic_auth = true
37 request_logging = true
38
39 ## Google Apps Domains to allow authentication for
40 google_apps_domains = [
41 \"mod.test\",
42 ]
43
44 email_domains = [
45 \"mod.test\",
46 ]
47
48 ## The Google OAuth Client ID, Secret
49 client_id = \"---\"
50 client_secret = \"---\"
51
52 ## Cookie Settings
53 ## Secret - the seed string for secure cookies
54 ## Domain - optional cookie domain to force cookies to (ie: .yourcompany.com)
55 ## Expire - expire timeframe for cookie
56 cookie_secret = \"won't tell you\"
57 cookie_domain = \".example.com\"
58 cookie_https_only = true
59 """
View as plain text