studio/sbbb
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e5741c4df61e8d858787edb70034d05e065457be
sbbb/base/ory/kustomization.yaml
Sienna Meridian Satterwhite e5741c4df6 feat: integrate tuwunel with Ory SSO, rename chat to messages subdomain 
- Add matrix to hydra-maester enabledNamespaces for OAuth2Client CRD
- Update allowed_return_urls and selfservice URLs: chat→messages
- Add Kratos verification flow, employee/external identity schemas
- Extend session lifespan to 30 days with persistent cookies
- Route messages.* to tuwunel via Pingora with WebSocket support
- Replace login-ui with kratos-admin-ui as unified auth frontend
- Update TLS certificate SANs: chat→messages, add monitoring subdomains
- Add tuwunel + La Suite images to production overlay
- Switch DDoS/scanner detection to compiled-in ensemble models (observe_only)
2026-03-10 18:52:47 +00:00

45 lines
1.3 KiB
YAML
Raw Blame History

apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
# namespace: ory removed — all non-Helm resources already set namespace: ory
# explicitly, and the Helm charts use namespace: ory in their helmCharts spec.
# The kustomization-level transformer was incorrectly moving hydra-maester's
# enabledNamespaces Role (meant for lasuite) into the ory namespace, causing
# a duplicate-name conflict.
resources:
- namespace.yaml
- kratos-admin-deployment.yaml
# Hydra chart CRDs are not rendered by helm template; apply manually.
- hydra-oauth2client-crd.yaml
- vault-secrets.yaml
patches:
# Set Kratos selfservice UI URLs (DOMAIN_SUFFIX substituted at apply time).
- path: kratos-selfservice-urls.yaml
# The hydra-maester sub-chart does not set .Release.Namespace in its Deployment template.
- patch: |
- op: add
path: /metadata/namespace
value: ory
target:
kind: Deployment
name: hydra-hydra-maester
helmCharts:
# helm repo add ory https://k8s.ory.sh/helm/charts
- name: kratos
repo: https://k8s.ory.sh/helm/charts
version: "0.60.1"
releaseName: kratos
namespace: ory
valuesFile: kratos-values.yaml
- name: hydra
repo: https://k8s.ory.sh/helm/charts
version: "0.60.1"
releaseName: hydra
namespace: ory
valuesFile: hydra-values.yaml
Reference in New Issue View Git Blame Copy Permalink