treasuremap/manifests/function/dex-aio/dex-helmrelease.yaml

# ---
# Dex Helm Charts from Git Repository
# apiVersion: source.toolkit.fluxcd.io/v1beta1
# kind: GitRepository
# metadata:
#   name: dex-git-repo
#   namespace: collator
# spec:
#   interval: 5m
#   url: https://github.com/airshipit/charts.git
#   ref:
#     branch: master
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
  name: dex-aio
spec:
  interval: 5m
  chart:
    spec:
      chart: dex-aio
      # Referencing Dex Helm charts from Helm Collator repo
      sourceRef:
        kind: HelmRepository
        name: collator
        namespace: helm-chart-collator
      # Referencing Dex Helm charts from Git repo
      # sourceRef:
      #   kind: GitRepository
      #   name: dex-git-repo
      #   namespace: collator
  values:
    images:
      applications:
        dex:
          tag: v2.28.1
          name: dexidp/dex
          repo: quay.io
        nginx:
          tag: 1.17.10-alpine
          name: nginx
          repo: docker.io
        authenticator:
          tag: 1.2.0
          name: mintel/dex-k8s-authenticator
          repo: docker.io
    node_labels:
      dex:
        key: node-role.kubernetes.io/worker
        value: ""
    params:
      site:
        name: dex-test-site
      endpoints:
        hostname: dex.function.local
        port:
          https: 30556
          http: 30554
          k8s: 6443
        tls:
          cert_manager: true
          issuer:
            name: workload-cluster-ca-issuer
            kind: Issuer
      oidc:
        client_id: function-kubernetes
        client_secret: pUBnBOY80SnXgjibTYM9ZWNzY2xreNGQok
      ldap:
        bind_password: "your LDAP bind password"
        name: "LDAP TEST SERVICES"
        config:
          host: "your LDAP FQDN"
          port: 636
          bind_dn: "your LDAP bind username"
          bind_pw_env: LDAP_BIND_PW
          username_prompt: SSO Username
          user_search:
            base_dn: dc=testservices,dc=test,dc=com
            filter: "(objectClass=person)"
            username: cn
            idAttr: cn
            emailAttr: name
            nameAttr: name
          group_search:
            base_dn: ou=groups,dc=testservices,dc=test,dc=com
            filter: "(objectClass=group)"
            userMatchers:
              userAttr: DN
              groupAttr: member
            nameAttr: cn