add authentication with zitadel

2026-05-04 15:52:09 -05:00
parent 636d456c24
commit 44d89014fd
14 changed files with 614 additions and 12 deletions
--- a/ops/chart/values.yaml
+++ b/ops/chart/values.yaml
@@ -72,6 +72,20 @@ controllers:
              secretKeyRef:
                name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-cluster-pg-app'
                key: uri
+          
+          # Zitadel Configuration
+          ZITADEL_ISSUER:
+            value: "https://zitadel.example.com"
+          ZITADEL_CLIENT_ID:
+            valueFrom:
+              secretKeyRef:
+                name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-apiapp-client-secret'
+                key: clientId
+          ZITADEL_CLIENT_SECRET:
+            valueFrom:
+              secretKeyRef:
+                name: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}-apiapp-client-secret'
+                key: clientSecret
        probes:
          liveness:
            enabled: true
@@ -250,3 +264,16 @@ rawResources:
        schemas:
          - name: eventstore
            owner: policy_service
+
+  apiapp:
+    enabled: true
+    apiVersion: zitadel.github.com/v1alpha1
+    kind: APIApp
+    suffix: apiapp
+    spec:
+      spec:
+        projectRef:
+          name: seguros-dev
+          namespace: zitadel-resources-operator
+        apiAppName: policy-service
+        authMethodType: API_AUTH_METHOD_TYPE_BASIC