fix: add http service to authentik

fix: oidc auth url
2026-02-08 01:36:28 +01:00 · 2025-11-18 15:18:17 +01:00 · 2025-10-13 23:32:48 +02:00
2 changed files with 21 additions and 1 deletions
--- a/images/operator/src/bootstrap/bootstrap.ts
+++ b/images/operator/src/bootstrap/bootstrap.ts
@@ -32,7 +32,7 @@ class BootstrapService {
  public ensure = async () => {
    await this.namespaces.ensure();
    await this.repos.ensure();
-    // await this.releases.ensure();
+    await this.releases.ensure();
    await this.cloudflareTunnel.ensure({
      spec: {},
    });
--- a/images/operator/src/resources/homelab/authentik-server/authentik-server.ts
+++ b/images/operator/src/resources/homelab/authentik-server/authentik-server.ts
@@ -18,6 +18,7 @@ import { RepoService } from '#bootstrap/repos/repos.ts';
 import { DestinationRule } from '#resources/istio/destination-rule/destination-rule.ts';
 import { NotReadyError } from '#utils/errors.ts';
 import { ExternalHttpService } from '../external-http-service.ts/external-http-service.ts';
+import { HttpService } from '../http-service/http-service.ts';

 const specSchema = z.object({
  environment: z.string(),
@@ -44,6 +45,7 @@ class AuthentikServer extends CustomResource<typeof specSchema> {
  #initSecret: Secret<InitSecretData>;
  #service: Service;
  #helmRelease: HelmRelease;
+  #httpService: HttpService;
  #externalHttpService: ExternalHttpService;
  #destinationRule: DestinationRule;

@@ -72,6 +74,8 @@ class AuthentikServer extends CustomResource<typeof specSchema> {
    this.#destinationRule.on('changed', this.queueReconcile);

    this.#externalHttpService = resourceService.get(ExternalHttpService, this.name, this.namespace);
+
+    this.#httpService = resourceService.get(HttpService, this.name, this.namespace);
  }

  public get service() {
@@ -253,6 +257,22 @@ class AuthentikServer extends CustomResource<typeof specSchema> {
      },
    });

+    await this.#httpService.ensure({
+      metadata: {
+        ownerReferences: [this.ref],
+      },
+      spec: {
+        environment: this.spec.environment,
+        subdomain: this.spec.subdomain || 'authentik',
+        destination: {
+          host: this.#service.hostname,
+          port: {
+            number: 80,
+          },
+        },
+      },
+    });
+
    await this.#externalHttpService.ensure({
      metadata: {
        ownerReferences: [this.ref],
Author	SHA1	Message	Date
Morten Olsen	cad527e644	fix: add http service to authentik	2025-11-18 15:18:17 +01:00
Morten Olsen	ce2cebf77b	fix: oidc auth url	2025-10-13 23:32:48 +02:00