-
Notifications
You must be signed in to change notification settings - Fork 44
/
Copy pathargocd.yaml
58 lines (57 loc) · 1.76 KB
/
argocd.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
_: &hostname argocd.example.com
_: &url https://argocd.example.com
argocd:
enabled: true
values:
server:
certificate:
domain: *hostname
config:
dex.config: |
connectors:
- type: ldap
id: ldap
name: myLDAP
config:
# ip address of remote LDAP server
host: ldap.example.com:389
# only set these to true if you have no other options
insecureNoSSL: false
insecureSkipVerify: false
# service accountused to bind to LDAP server
bindDN: CN=srvuser,OU=org,DC=example,DC=com
# password for service account
bindPW: password
# text for username prompt
usernamePrompt: User Name
# user search DN/config (here with AD specific attributes)
userSearch:
baseDN: DC=example,DC=com
filter: "(objectClass=person)"
username: sAMAccountName
idAttr: DN
emailAttr: mail
nameAttr: cn
# group search DN/config (here with AD specific attributes)
groupSearch:
baseDN: DC=example,DC=com
filter: "(objectClass=group)"
userAttr: DN
groupAttr: memberOf
nameAttr: cn
url: *url
ingress:
annotations: {}
enabled: true
hosts:
- *hostname
ingress:
tls:
- hosts:
- *hostname
secretName: infra-argocd-cert
rbacConfig:
policy.csv: |
g, [email protected], role:admin
policy.default: role:readonly
scopes: '[email,groups]'