a65b553252
Remove committed talos/kubeconfig (cluster admin credentials). Ignore talos/kubeconfig at repo root. Replace hardcoded LDAP outpost token with AUTHENTIK_LDAP_OUTPOST_TOKEN from .env. Document Sealed Secrets workflow for Newt (kubeseal script + README updates). Clarify Talos secrets use talsecret/SOPS, not Sealed Secrets. Made-with: Cursor
19 lines
685 B
Plaintext
19 lines
685 B
Plaintext
PUID=1000
|
|
PGID=100
|
|
AUTHENTIK_SECRET_KEY=supersecretkey
|
|
PG_PASS=supersecretpassword
|
|
AUTHENTIK_EMAIL__HOST=smtp.gmail.com
|
|
AUTHENTIK_EMAIL__PORT=587
|
|
AUTHENTIK_EMAIL__USERNAME=admin@example.com
|
|
AUTHENTIK_EMAIL__PASSWORD=password123
|
|
AUTHENTIK_EMAIL__USE_TLS=true
|
|
AUTHENTIK_EMAIL__USE_SSL=false
|
|
AUTHENTIK_EMAIL__TIMEOUT=10
|
|
AUTHENTIK_EMAIL__FROM=auth@example.com
|
|
COMPOSE_PORT_HTTP=10000
|
|
COMPOSE_PORT_HTTPS=10443
|
|
AUTHENTIK_ERROR_REPORTING__ENABLED=true
|
|
AUTHENTIK_TAG=2025.10
|
|
# LDAP outpost (komodo/auth/Authentik/compose.yaml authentik_ldap) — create token in Authentik UI
|
|
AUTHENTIK_LDAP_OUTPOST_TOKEN=
|
|
CONFIG_PATH=/srv/dev-disk-by-uuid-7acaa21a-aa26-4605-bb36-8f4c9c1a7695/configs/authentik |