oauth2-proxy helm

No introduction found. Create it?

Install

Install with:

helm repo add oauth2-proxy https://oauth2-proxy.github.io/manifests/
helm install oauth2-proxy oauth2-proxy/oauth2-proxy -f values.yaml

Examples

See examples from other people.

Top Repositories (1 out of 4)

NameRepoStarsVersionTimestamp
oauth2-proxyxunholy/k8s-gitops5427.12.69 days ago

Values

See the most popular values for this chart:

KeyTypes
config.configFile (3)
email_domains = [] upstreams = [ "file:///dev/null" ]
string
config.existingSecret (3)
oauth2-proxy-client-secrets
string
config.clientID (1)
${OAUTH2_PROXY_CLIENT_ID}
string
config.clientSecret (1)
${OAUTH2_PROXY_CLIENT_SECRET}
string
config.cookieSecret (1)
${OAUTH2_PROXY_COOKIE_SECRET}
string
image.repository (3)
quay.io/oauth2-proxy/oauth2-proxy
string
image.tag (2)
v7.6.0
string
authenticatedEmailsFile.enabled (2)
true
boolean
authenticatedEmailsFile.restricted_access (2)
${SECRET_EMAIL}
string
ingress.annotations.external-dns/is-public (2)
true
string
ingress.annotations."external-dns.alpha.kubernetes.io/target" (2)
ipv4.${SECRET_DOMAIN}
string
ingress.annotations."cert-manager.io/cluster-issuer" (1)
letsencrypt-production
string
ingress.className (2)
external
string
ingress.enabled (2)
true
boolean
ingress.hosts[] (2)
- auth.${SECRET_DOMAIN}
string
ingress.path (2)
/oauth2
string
ingress.tls[].hosts[] (2)
- auth.${SECRET_DOMAIN}
string
ingress.tls[].secretName (1)
auth-tls
string
ingress.pathType (1)
Prefix
string
extraArgs.cookie-domain (1)
.${SECRET_DOMAIN}
string
extraArgs.exclude-logging-path (1)
/ping
string
extraArgs.pass-basic-auth (1)
false
string
extraArgs.provider (1)
google
string
extraArgs.provider-display-name (1)
an authenticated email
string
extraArgs.skip-provider-button (1)
false
string
extraArgs.whitelist-domain (1)
.${SECRET_DOMAIN}
string
extraArgs[] (1)
- --skip-jwt-bearer-tokens=true
- --extra-jwt-issuers=https://kubernetes.default.svc.cluster.local=https://kubernetes.default.svc.cluster.local,https://kubernetes.default.svc.cluster.local=pipelines.kubeflow.org
- --set-xauthrequest=true
- --set-authorization-header=true
- --code-challenge-method=S256
- --provider=oidc
- --scope=profile email groups openid
- --oidc-issuer-url=http://dex.kubeflow.svc.cluster.local:5556/dex
- --skip-oidc-discovery=true
- --login-url=/dex/auth
- --redeem-url=http://dex.kubeflow.svc.cluster.local:5556/dex/token
- --oidc-jwks-url=http://dex.kubeflow.svc.cluster.local:5556/dex/keys
- --skip-auth-route=/dex/.*,^/metrics
- --skip-provider-button=true
- --cookie-name=kubeflow-oauth2-proxy
- --cookie-expire=24h
- --cookie-refresh=1h
- --ssl-insecure-skip-verify=true
- --upstream=static://200
- --redirect-url=/oauth2/callback
- --cookie-secure=false
- --relative-redirect-url
string
livenessProbe.enabled (1)
false
boolean
metrics.servicemonitor.enabled (1)
true
boolean
readinessProbe.enabled (1)
false
boolean
replicaCount (1)
1
number