4 Commits

Author SHA1 Message Date
unkinben 0199a422a0 Merge branch 'main' into fix-kanidm-replication-config
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/kubeconform Pipeline was successful
2026-05-30 23:33:36 +10:00
unkinben f11ec1056d fix(kanidm): remove invalid automatic_refresh from replication config (#179)
Reviewed-on: #179
2026-05-30 23:20:48 +10:00
unkinben 1b4b22cad8 fix(kanidm): remove invalid automatic_refresh from replication config
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/kubeconform Pipeline was successful
2026-05-30 23:15:41 +10:00
unkinben ed7feaf19a Update apps/base/kanidm/vaultauth.yaml (#177)
Fix the VaultAuth object

Reviewed-on: #177
2026-05-30 23:11:38 +10:00
4 changed files with 5 additions and 11 deletions
-1
View File
@@ -17,4 +17,3 @@ versions = 7
[replication] [replication]
origin = "repl://kanidm-0.kanidm-headless.kanidm.svc.cluster.local:8444" origin = "repl://kanidm-0.kanidm-headless.kanidm.svc.cluster.local:8444"
bindaddress = "[::]:8444" bindaddress = "[::]:8444"
automatic_refresh = true
-1
View File
@@ -17,4 +17,3 @@ versions = 7
[replication] [replication]
origin = "repl://kanidm-1.kanidm-headless.kanidm.svc.cluster.local:8444" origin = "repl://kanidm-1.kanidm-headless.kanidm.svc.cluster.local:8444"
bindaddress = "[::]:8444" bindaddress = "[::]:8444"
automatic_refresh = true
-1
View File
@@ -17,4 +17,3 @@ versions = 7
[replication] [replication]
origin = "repl://kanidm-2.kanidm-headless.kanidm.svc.cluster.local:8444" origin = "repl://kanidm-2.kanidm-headless.kanidm.svc.cluster.local:8444"
bindaddress = "[::]:8444" bindaddress = "[::]:8444"
automatic_refresh = true
+5 -8
View File
@@ -4,18 +4,15 @@ kind: VaultAuth
metadata: metadata:
name: default name: default
namespace: kanidm namespace: kanidm
labels:
app.kubernetes.io/name: kanidm
app.kubernetes.io/instance: kanidm
spec: spec:
method: kubernetes
mount: k8s/au/syd1
vaultConnectionRef: vso-system/default
allowedNamespaces: allowedNamespaces:
- kanidm - kanidm
kubernetes: kubernetes:
role: default
serviceAccount: kanidm
audiences: audiences:
- vault - vault
role: default
serviceAccount: default
tokenExpirationSeconds: 600 tokenExpirationSeconds: 600
method: kubernetes
mount: k8s/au/syd1
vaultConnectionRef: vso-system/default