2018-03-05 00:01:38 +07:00
|
|
|
#!/bin/bash
|
|
|
|
|
2019-03-04 05:51:52 +07:00
|
|
|
start_apps() {
|
2018-03-05 00:01:38 +07:00
|
|
|
# Create TLS certificate and key for HTTPS termination
|
2019-04-25 04:52:08 +07:00
|
|
|
kubectl create secret generic test-app-tls --namespace=authelia --from-file=apps/ssl/server.key --from-file=apps/ssl/server.cert
|
2018-03-05 00:01:38 +07:00
|
|
|
|
|
|
|
# Spawn the applications
|
|
|
|
kubectl apply -f apps
|
|
|
|
}
|
|
|
|
|
|
|
|
start_ingress_controller() {
|
|
|
|
kubectl apply -f ingress-controller
|
|
|
|
}
|
|
|
|
|
2019-03-04 05:51:52 +07:00
|
|
|
start_dashboard() {
|
2019-04-25 04:52:08 +07:00
|
|
|
kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.0.0-beta4/aio/deploy/recommended.yaml
|
|
|
|
kubectl apply -f dashboard.yml
|
|
|
|
|
|
|
|
echo "Bearer token for UI user."
|
|
|
|
kubectl -n kubernetes-dashboard describe secret $(kubectl -n kubernetes-dashboard get secret | grep admin-user | awk '{print $1}')
|
2018-03-05 00:01:38 +07:00
|
|
|
}
|
|
|
|
|
|
|
|
# Spawn Redis and Mongo as backend for Authelia
|
|
|
|
# Please note they are not configured to be distributed on several machines
|
|
|
|
start_storage() {
|
|
|
|
kubectl apply -f storage
|
|
|
|
}
|
|
|
|
|
|
|
|
# Create a fake mailbox to catch emails sent by Authelia
|
2019-03-04 05:51:52 +07:00
|
|
|
start_mail() {
|
|
|
|
kubectl apply -f mail
|
2018-03-05 00:01:38 +07:00
|
|
|
}
|
|
|
|
|
|
|
|
start_ldap() {
|
2019-04-25 04:52:08 +07:00
|
|
|
kubectl create configmap ldap-config --namespace=authelia --from-file=ldap/base.ldif --from-file=ldap/access.rules
|
2018-03-05 00:01:38 +07:00
|
|
|
kubectl apply -f ldap
|
|
|
|
}
|
|
|
|
|
|
|
|
# Create the Authelia namespace in the cluster
|
|
|
|
create_namespace() {
|
|
|
|
kubectl apply -f namespace.yml
|
|
|
|
}
|
|
|
|
|
|
|
|
create_namespace
|
2019-03-04 05:51:52 +07:00
|
|
|
start_dashboard
|
2018-03-05 00:01:38 +07:00
|
|
|
start_storage
|
|
|
|
start_ldap
|
2019-03-04 05:51:52 +07:00
|
|
|
start_mail
|
2018-03-05 00:01:38 +07:00
|
|
|
start_ingress_controller
|
|
|
|
start_apps
|