authelia: Switch to KeyDB

2023-05-18 23:15:14 +03:00 · 2023-05-18 23:15:14 +03:00 · e82fd3f543
parent 8b0719234c
commit e82fd3f543
1 changed files with 15 additions and 46 deletions
--- a/authelia/application.yml
+++ b/authelia/application.yml
@ -47,9 +47,6 @@ data:
      expiration: 1M
      inactivity: 120h
      remember_me_duration: "0"
-      redis:
-        host: redis
-        port: 6379
    regulation:
      ban_time: 5m
      find_time: 2m
@ -182,8 +179,18 @@ spec:
        - name: AUTHELIA_SESSION_REDIS_PASSWORD
          valueFrom:
            secretKeyRef:
-              name: redis-secrets
+              name: redis-ephemeral-owner-secrets
              key: REDIS_PASSWORD
+        - name: AUTHELIA_SESSION_REDIS_HOST
+          valueFrom:
+            secretKeyRef:
+              name: redis-ephemeral-owner-secrets
+              key: REDIS_HOST
+        - name: AUTHELIA_SESSION_REDIS_PORT
+          valueFrom:
+            secretKeyRef:
+              name: redis-ephemeral-owner-secrets
+              key: REDIS_PORT
        - name: AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE
          value: /secrets/STORAGE_ENCRYPTION_KEY
        - name: AUTHELIA_STORAGE_MYSQL_PASSWORD_FILE
@ -278,9 +285,6 @@ spec:
      - name: mariadb-secrets
        secret:
          secretName: mariadb-secrets
-      - name: redis-secrets
-        secret:
-          secretName: redis-secrets
      - name: oidc-secrets
        secret:
          secretName: oidc-secrets
@ -370,45 +374,10 @@ spec:
      - name: headers-k6-authelia
        namespace: authelia
 ---
-apiVersion: mysql.oracle.com/v2
-kind: InnoDBCluster
-metadata:
-  name: mysql-cluster
-spec:
-  secretName: mysql-secrets
-  instances: 3
-  router:
-    instances: 2
-  tlsUseSelfSigned: true
-  datadirVolumeClaimTemplate:
-    storageClassName: local-path
-    accessModes:
-      - ReadWriteOnce
-    resources:
-      requests:
-        storage: "1Gi"
-  podSpec:
-    affinity:
-      podAntiAffinity:
-        requiredDuringSchedulingIgnoredDuringExecution:
-          - labelSelector:
-              matchExpressions:
-                - key: app.kubernetes.io/managed-by
-                  operator: In
-                  values:
-                    - mysql-operator
-            topologyKey: kubernetes.io/hostname
-    nodeSelector:
-      dedicated: storage
-    tolerations:
-      - key: dedicated
-        operator: Equal
-        value: storage
-        effect: NoSchedule
---
 apiVersion: codemowers.io/v1alpha1
-kind: KeyDBCluster
+kind: Redis
 metadata:
-  name: redis
+  name: ephemeral
 spec:
-  replicas: 3
+  class: ephemeral
+  capacity: 512Mi