marco/veda
1
0
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases Wiki Activity

Fix: Update Grafana OAuth2 client configuration for improved authentication

Browse Source
This commit is contained in:
Marco van Zijl 2025-11-22 21:45:01 +01:00
parent aa0bf24560
commit 1d07937a9f
1 changed files with 8 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
apps/monitoring/grafana/values.yaml
View File

@ -1,9 +1,5 @@
grafana: grafana:
adminUser: admin
adminPassword: changeme # TODO: Use secret management
# Disable local persistence - using PostgreSQL database
persistence: persistence:
enabled: false enabled: false
@ -20,8 +16,6 @@ grafana:
mountPath: /secrets/my-db mountPath: /secrets/my-db
readOnly: true readOnly: true
envFromSecret: authentik-client-secret-grafana
datasources: datasources:
datasources.yaml: datasources.yaml:
apiVersion: 1 apiVersion: 1
@ -108,13 +102,15 @@ grafana:
auth.generic_oauth: auth.generic_oauth:
enabled: true enabled: true
name: Authentik name: Authentik
client_id: "$__from_env{GF_AUTH_GENERIC_OAUTH_CLIENT_ID}" client_id: 0pmpT3FgXys01i0LovzVQdJPZ6nBD6ev6C8mJcKl
scopes: openid profile email client_secret: Dl9RB84iba62VpL/ybD+plyu7Nt+7rv/S4gIwVFsG2c=
auth_url: https://auth.noxxos.nl/application/o/authorize/ scopes: openid profile email groups
token_url: https://auth.noxxos.nl/application/o/token/ auth_url: https://sso.noxxos.nl/application/o/authorize/
api_url: https://auth.noxxos.nl/application/o/userinfo/ token_url: https://sso.noxxos.nl/application/o/token/
role_attribute_path: contains(groups[*], 'Grafana Admins') && 'Admin' || contains(groups[*], 'Grafana Editors') && 'Editor' || 'Viewer' api_url: https://sso.noxxos.nl/application/o/userinfo/
role_attribute_path: contains(groups[*], 'Admin') && 'GrafanaAdmin' || 'Viewer'
allow_sign_up: true allow_sign_up: true
allow_assign_grafana_admin: true
analytics: analytics:
reporting_enabled: false reporting_enabled: false