longhorn_oauth2.yml

apiVersion: argoproj.io/v1alpha1
kind: Application
metadata:
  name: oauth2-longhorn
  namespace: argocd
spec:
  project: exphost
  source:
    repoURL: 'https://charts.bitnami.com/bitnami'
    chart: oauth2-proxy
    targetRevision: 3.4.9
    helm:
      values: |
        ingress:
          enabled: true
          hostname: "longhorn.{{ .Values.domain}}"
          path: /oauth2
          pathType: Prefix
          tls: true
          annotations:
            cert-manager.io/cluster-issuer: acme-issuer
        configuration:
          existingSecret: oauth2-longhorn-oauth2-proxy
          content: |
            provider = "oidc"
            oidc_issuer_url = "https://auth.{{ .Values.domain }}/dex"
            allowed_groups = ["k8s-admins"]
            email_domains = [ "*" ]
            upstreams = [ "file:///dev/null" ]
        redis:
          auth:
            existingSecret: oauth2-longhorn-redis

  destination:
    server: 'https://kubernetes.default.svc'
    namespace: longhorn-system
  syncPolicy:
    automated:
      prune: true
      selfHeal: true
    syncOptions:
      - CreateNamespace=true