From 30fb9c7d0fe007886c3ce88ee12790f1cd4102cb Mon Sep 17 00:00:00 2001
From: Chris Cowley <chris@cowley.tech>
Date: Wed, 2 Apr 2025 17:01:01 +0200
Subject: [PATCH] re-add outpost

---
 .forgejo/workflows/authentik.yaml |  2 +-
 authentik/outposts.tf             | 50 +++++++++++++++----------------
 2 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/.forgejo/workflows/authentik.yaml b/.forgejo/workflows/authentik.yaml
index d1904c8..cbd7874 100644
--- a/.forgejo/workflows/authentik.yaml
+++ b/.forgejo/workflows/authentik.yaml
@@ -3,7 +3,7 @@ on:
     branches:
       - 'main'
     path:
-      - '**/authentik'
+      - '**/authentik/*'
 
 jobs:
   authentik":
diff --git a/authentik/outposts.tf b/authentik/outposts.tf
index 2617b59..d8fbebb 100644
--- a/authentik/outposts.tf
+++ b/authentik/outposts.tf
@@ -33,31 +33,31 @@ resource "authentik_outpost" "embedded_outpost" {
   #  })
 }
 
-# resource "authentik_outpost" "internal" {
-#   name = "Internal Outpost"
-# 
-#   protocol_providers = [
-#     authentik_provider_proxy.longhorn.id,
-#   ]
-#   service_connection = authentik_service_connection_kubernetes.local.id
-# 
-#   config = jsonencode({
-#     authentik_host                = "https://auth.lab.cowley.tech"
-#     docker_map_ports              = true
-#     kubernetes_ingress_class_name = "traefik"
-#     kubernetes_ingress_annotations = {
-#       "cert-manager.io/cluster-issuer" = "letsencrypt"
-#     }
-#     kubernetes_ingress_secret_name = "authentk_internal_outpost_tls"
-#     kubernetes_json_patches        = null
-#     kubernetes_namespace           = "authentik"
-#     kubernetes_replicas            = 1
-#     kubernetes_service_type        = "ClusterIP"
-#     log_level                      = "info"
-#     object_naming_template         = "ak-outpost-%(name)s"
-#     refresh_interval               = "minutes=5"
-#   })
-# }
+resource "authentik_outpost" "internal" {
+  name = "Internal Outpost"
+
+  protocol_providers = [
+    authentik_provider_proxy.longhorn.id,
+  ]
+  service_connection = authentik_service_connection_kubernetes.local.id
+
+  config = jsonencode({
+    authentik_host                = "https://auth.lab.cowley.tech"
+    docker_map_ports              = true
+    kubernetes_ingress_class_name = "traefik"
+    kubernetes_ingress_annotations = {
+      "cert-manager.io/cluster-issuer" = "letsencrypt"
+    }
+    kubernetes_ingress_secret_name = "authentk_internal_outpost_tls"
+    kubernetes_json_patches        = null
+    kubernetes_namespace           = "authentik"
+    kubernetes_replicas            = 1
+    kubernetes_service_type        = "ClusterIP"
+    log_level                      = "info"
+    object_naming_template         = "ak-outpost-%(name)s"
+    refresh_interval               = "minutes=5"
+  })
+}
 
 resource "authentik_service_connection_kubernetes" "local" {
   name  = "Local Kubernetes Cluster"