commit e390a14fcff1f90ce9cbfe0b8808e51da6955ebd
author Giorgi Lekveishvili <lekva@gl-mbp-m1-max.local> Thu Jun 01 11:52:39 2023 +0400
committer Giorgi Lekveishvili <lekva@gl-mbp-m1-max.local> Thu Jun 01 11:52:39 2023 +0400
tree 12f10712cc51507bf506e99bc3bfe320119c5349
parent b769155557b9431e481ca9567924bc2527c529ca

charts: headscale oauth2client secret

charts/headscale/templates/oauth2-client.yaml

diff --git a/charts/headscale/templates/oauth2-client.yaml b/charts/headscale/templates/oauth2-client.yaml
index c05b69a..d9c5cd1 100644
--- a/charts/headscale/templates/oauth2-client.yaml
+++ b/charts/headscale/templates/oauth2-client.yaml
@@ -12,9 +12,18 @@
   scope: "openid profile email"
   secretName: {{ .Values.oauth2.secretName }}
   redirectUris:
-  - https://headscale.{{ .Values.domain }}/oidc/callback
+  - https://{{ .Values.domain }}/oidc/callback
   hydraAdmin:
     url: {{ .Values.oauth2.hydraAdmin }}
     port: 80
-    endpoint: /clients
+    endpoint: /admin/clients
     forwardedProto: https
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ .Values.oauth2.secretName }}
+  namespace: {{ .Release.Namespace }}
+data:
+  client_id: {{ .Values.oauth2.clientId | b64enc}}
+  client_secret: {{ $secret | b64enc }}