studio/sbbb
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(infra): data, storage, devtools, and ory layer updates

Browse Source 
- data: CNPG cluster tuning, OpenBao values, OpenSearch deployment fixes,
  OpenSearch PVC, barman vault secret for S3 backup credentials
- storage: SeaweedFS filer updates (s3.json via secret subPath), PVC for
  filer persistent storage
- devtools: Gitea values (SSH service, custom theme), gitea-theme-cm ConfigMap
- ory: add kratos-selfservice-urls.yaml for self-service flow URLs
- media: LiveKit values updated (TURN config, STUN, resource limits)
- vso: kustomization cleanup
This commit is contained in:
Sienna Meridian Satterwhite
2026-03-06 12:07:28 +00:00
parent 7ff35d3e0c
commit d32d1435f9
17 changed files with 454 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
base/ory/kratos-selfservice-urls.yaml Normal file
View File

@@ -0,0 +1,23 @@
# Kratos selfservice UI URLs — patch over the Helm-rendered kratos-config ConfigMap.
# DOMAIN_SUFFIX is substituted by sunbeam apply.
apiVersion: v1
kind: ConfigMap
metadata:
name: kratos-config
namespace: ory
data:
selfservice.default_browser_return_url: "https://auth.DOMAIN_SUFFIX/"
selfservice.flows.login.ui_url: "https://auth.DOMAIN_SUFFIX/login"
selfservice.flows.registration.ui_url: "https://auth.DOMAIN_SUFFIX/registration"
selfservice.flows.recovery.ui_url: "https://auth.DOMAIN_SUFFIX/recovery"
selfservice.flows.settings.ui_url: "https://auth.DOMAIN_SUFFIX/settings"
selfservice.allowed_return_urls: |
- https://auth.DOMAIN_SUFFIX/
- https://docs.DOMAIN_SUFFIX/
- https://meet.DOMAIN_SUFFIX/
- https://drive.DOMAIN_SUFFIX/
- https://mail.DOMAIN_SUFFIX/
- https://chat.DOMAIN_SUFFIX/
- https://people.DOMAIN_SUFFIX/
- https://src.DOMAIN_SUFFIX/
- https://admin.DOMAIN_SUFFIX/

5
base/ory/kustomization.yaml
View File

@@ -15,8 +15,11 @@ resources:
- hydra-oauth2client-crd.yaml
- vault-secrets.yaml
# The hydra-maester sub-chart does not set .Release.Namespace in its Deployment template.
patches:
# Set Kratos selfservice UI URLs (DOMAIN_SUFFIX substituted at apply time).
- path: kratos-selfservice-urls.yaml
# The hydra-maester sub-chart does not set .Release.Namespace in its Deployment template.
- patch: |
- op: add
path: /metadata/namespace