| Giorgi Lekveishvili | cc56ae9 | 2023-05-31 17:50:39 +0400 | [diff] [blame] | 1 | {{- $secret := include "clientSecret" . -}} |
| 2 | apiVersion: hydra.ory.sh/v1alpha1 |
| 3 | kind: OAuth2Client |
| 4 | metadata: |
| 5 | name: headscale |
| 6 | namespace: {{ .Release.Namespace }} |
| 7 | spec: |
| 8 | grantTypes: |
| 9 | - authorization_code |
| 10 | responseTypes: |
| 11 | - code |
| 12 | scope: "openid profile email" |
| 13 | secretName: {{ .Values.oauth2.secretName }} |
| 14 | redirectUris: |
| 15 | - https://headscale.{{ .Values.domain }}/oidc/callback |
| 16 | hydraAdmin: |
| 17 | url: {{ .Values.oauth2.hydraAdmin }} |
| 18 | port: 80 |
| 19 | endpoint: /clients |
| 20 | forwardedProto: https |