DevFW-CICD/argocd-helm
14
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix(argo-workflows): Set only used values on SSO configuration (#1483)

Browse source 
Signed-off-by: yu-croco <yu.croco@gmail.com>
This commit is contained in:
Aikawa 2022-09-24 09:03:36 +09:00 committed by GitHub
parent f1fabf17dd
commit fd0f2c92e1
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 39 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
charts/argo-workflows/Chart.yaml
View file

@ -3,7 +3,7 @@ appVersion: v3.4.0
name: argo-workflows name: argo-workflows
description: A Helm chart for Argo Workflows description: A Helm chart for Argo Workflows
type: application type: application
version: 0.19.1 version: 0.19.2
icon: https://raw.githubusercontent.com/argoproj/argo-workflows/master/docs/assets/argo.png icon: https://raw.githubusercontent.com/argoproj/argo-workflows/master/docs/assets/argo.png
home: https://github.com/argoproj/argo-helm home: https://github.com/argoproj/argo-helm
sources: sources:
@ -13,4 +13,4 @@ maintainers:
url: https://argoproj.github.io/ url: https://argoproj.github.io/
annotations: annotations:
artifacthub.io/changes: | artifacthub.io/changes: |
- "[Fixed]: Remove unsupported values from SSO configuration" - "[Fixed]: Set only used values on SSO configuration"

33
charts/argo-workflows/templates/controller/workflow-controller-config-map.yaml
View file

@ -119,7 +119,38 @@ data:
workflowDefaults: workflowDefaults:
{{ toYaml .Values.controller.workflowDefaults | indent 6 }}{{- end }} {{ toYaml .Values.controller.workflowDefaults | indent 6 }}{{- end }}
{{- with .Values.server.sso }} {{- with .Values.server.sso }}
sso: {{- toYaml . | nindent 6 }} sso:
issuer: {{ .issuer }}
clientId:
name: {{ .clientId.name }}
key: {{ .clientId.key }}
clientSecret:
name: {{ .clientSecret.name }}
key: {{ .clientSecret.key }}
redirectUrl: {{ .redirectUrl }}
{{- if and (.rbac) (.rbac.enabled) }}
rbac:
enabled: {{ .rbac.enabled }}
{{- end }}
{{- if .scopes }}
scopes: {{ toYaml .scopes | nindent 8 }}
{{- end }}
{{- if .issuerAlias }}
issuerAlias: {{ .issuerAlias }}
{{- end }}
{{- if and (.sessionExpiry) (.sessionExpiry.duration) }}
sessionExpiry:
duration: {{ .sessionExpiry.duration }}
{{- end }}
{{- if .customGroupClaimName }}
customGroupClaimName: {{ .customGroupClaimName }}
{{- end }}
{{- if .userInfoPath }}
userInfoPath: {{ .userInfoPath }}
{{- end }}
{{- if .insecureSkipVerify }}
insecureSkipVerify: {{ .insecureSkipVerify }}
{{- end }}
{{- end }} {{- end }}
{{- with .Values.controller.workflowRestrictions }} {{- with .Values.controller.workflowRestrictions }}
workflowRestrictions: {{- toYaml . | nindent 6 }} workflowRestrictions: {{- toYaml . | nindent 6 }}

5
charts/argo-workflows/values.yaml
View file

@ -482,6 +482,11 @@ server:
# redirectUrl: https://argo/oauth2/callback # redirectUrl: https://argo/oauth2/callback
# rbac: # rbac:
# enabled: true # enabled: true
## When present, restricts secrets the server can read to a given list.
## You can use it to restrict the server to only be able to access the
## service account token secrets that are associated with service accounts
## used for authorization.
# secretWhitelist: []
## Scopes requested from the SSO ID provider. The 'groups' scope requests ## Scopes requested from the SSO ID provider. The 'groups' scope requests
## group membership information, which is usually used for authorization ## group membership information, which is usually used for authorization
## decisions. ## decisions.