diff --git a/authelia/application.yml b/authelia/application.yml index 81230d5..e12e11a 100644 --- a/authelia/application.yml +++ b/authelia/application.yml @@ -47,9 +47,6 @@ data: expiration: 1M inactivity: 120h remember_me_duration: "0" - redis: - host: redis - port: 6379 regulation: ban_time: 5m find_time: 2m @@ -182,8 +179,18 @@ spec: - name: AUTHELIA_SESSION_REDIS_PASSWORD valueFrom: secretKeyRef: - name: redis-secrets + name: redis-ephemeral-owner-secrets key: REDIS_PASSWORD + - name: AUTHELIA_SESSION_REDIS_HOST + valueFrom: + secretKeyRef: + name: redis-ephemeral-owner-secrets + key: REDIS_HOST + - name: AUTHELIA_SESSION_REDIS_PORT + valueFrom: + secretKeyRef: + name: redis-ephemeral-owner-secrets + key: REDIS_PORT - name: AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE value: /secrets/STORAGE_ENCRYPTION_KEY - name: AUTHELIA_STORAGE_MYSQL_PASSWORD_FILE @@ -278,9 +285,6 @@ spec: - name: mariadb-secrets secret: secretName: mariadb-secrets - - name: redis-secrets - secret: - secretName: redis-secrets - name: oidc-secrets secret: secretName: oidc-secrets @@ -370,45 +374,10 @@ spec: - name: headers-k6-authelia namespace: authelia --- -apiVersion: mysql.oracle.com/v2 -kind: InnoDBCluster -metadata: - name: mysql-cluster -spec: - secretName: mysql-secrets - instances: 3 - router: - instances: 2 - tlsUseSelfSigned: true - datadirVolumeClaimTemplate: - storageClassName: local-path - accessModes: - - ReadWriteOnce - resources: - requests: - storage: "1Gi" - podSpec: - affinity: - podAntiAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - - labelSelector: - matchExpressions: - - key: app.kubernetes.io/managed-by - operator: In - values: - - mysql-operator - topologyKey: kubernetes.io/hostname - nodeSelector: - dedicated: storage - tolerations: - - key: dedicated - operator: Equal - value: storage - effect: NoSchedule ---- apiVersion: codemowers.io/v1alpha1 -kind: KeyDBCluster +kind: Redis metadata: - name: redis + name: ephemeral spec: - replicas: 3 + class: ephemeral + capacity: 512Mi