Initial scaffold #1

Open
unkinben wants to merge 3 commits from benvin/initial-scaffold into main
Owner

Summary

  • Terraform module for managing Authentik identity provider (identity.unkin.net)
  • Groups, SAML/OAuth2/LDAP providers, applications, and LDAP outposts
  • Data-driven YAML config with Terragrunt config loader
  • Consul backend for state storage
  • Provider: goauthentik/authentik 2026.5.0
  • Woodpecker CI pipelines (pre-commit on PR, plan on PR, apply on main)
  • Makefile with Vault AppRole (local) and K8s auth (CI) support

Dependencies

  • terraform-vault #78 (merged) — auth roles and Consul ACL
  • argocd-apps #211 (open) — Woodpecker ServiceAccount
## Summary - Terraform module for managing Authentik identity provider (identity.unkin.net) - Groups, SAML/OAuth2/LDAP providers, applications, and LDAP outposts - Data-driven YAML config with Terragrunt config loader - Consul backend for state storage - Provider: goauthentik/authentik 2026.5.0 - Woodpecker CI pipelines (pre-commit on PR, plan on PR, apply on main) - Makefile with Vault AppRole (local) and K8s auth (CI) support ## Dependencies - terraform-vault #78 (merged) — auth roles and Consul ACL - argocd-apps #211 (open) — Woodpecker ServiceAccount
unkinben added 1 commit 2026-06-28 11:55:43 +10:00
Initial scaffold
ci/woodpecker/pr/plan Pipeline failed
ci/woodpecker/pr/pre-commit Pipeline failed
4042760a16
- Terraform module for groups, SAML/OAuth2/LDAP providers, applications, and LDAP outposts
- Data-driven YAML config with Terragrunt config loader
- Environment: identity.unkin.net with Consul backend
- Provider: goauthentik/authentik 2026.5.0
- Woodpecker CI pipelines (pre-commit, plan, apply)
- Makefile with Vault AppRole and K8s auth support
unkinben added 1 commit 2026-06-28 12:04:26 +10:00
Fix provider schema for goauthentik/authentik 2026.5.0
ci/woodpecker/pr/plan Pipeline failed
ci/woodpecker/pr/pre-commit Pipeline was successful
8aa2273dcf
- group: parent → parents (list)
- saml/oauth2: add required invalidation_flow
- oauth2: remove redirect_uris (use allowed_redirect_uris via config)
- ldap: replace authorization_flow/search_group with bind_flow/unbind_flow
- Add versions.tf with required_providers block
- Remove service_connection from outpost (auto-discovered)
unkinben added 1 commit 2026-06-28 12:11:59 +10:00
Use identity.k8s.syd1.au.unkin.net as provider endpoint
ci/woodpecker/pr/plan Pipeline failed
ci/woodpecker/pr/pre-commit Pipeline was successful
00a122135e
Some required checks failed
ci/woodpecker/pr/plan Pipeline failed
Required
Details
ci/woodpecker/pr/pre-commit Pipeline was successful
Required
Details
Some required checks were not successful.
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin benvin/initial-scaffold:benvin/initial-scaffold
git checkout benvin/initial-scaffold
Sign in to join this conversation.