Robert Helewka
c1391e3dbc
- Updated vault.yml.example to include Athena secrets: secret key, DB password, OAuth client ID, and client secret. - Modified puck.incus.yml to add Athena service and configuration details, including user, group, directory, port, and domain. - Updated titania.incus.yml to change OAuth client ID and secret variable names for consistency with Athena. - Added Athena configuration to mcpo config template, including URL and authorization headers.
66 lines
2.1 KiB
YAML
66 lines
2.1 KiB
YAML
---
|
|
# Puck Configuration - Application Runtime
|
|
# Services: alloy, docker, lxqt, jupyterlab
|
|
|
|
services:
|
|
- alloy
|
|
- docker
|
|
- gitea_runner
|
|
- jupyterlab
|
|
- athena
|
|
|
|
# Gitea Runner
|
|
gitea_runner_name: "puck-runner"
|
|
|
|
# Alloy
|
|
alloy_log_level: "warn"
|
|
angelia_syslog_port: 51421
|
|
sagittarius_syslog_port: 51431
|
|
athena_syslog_port: 51441
|
|
kairos_syslog_port: 51451
|
|
icarlos_syslog_port: 51461
|
|
spelunker_syslog_port: 51481
|
|
jupyterlab_syslog_port: 51491
|
|
daedalus_syslog_port: 51401
|
|
|
|
# =============================================================================
|
|
# Athena Configuration
|
|
# =============================================================================
|
|
athena_user: athena
|
|
athena_group: athena
|
|
athena_directory: /srv/athena
|
|
athena_port: 22481
|
|
athena_domain: "ouranos.helu.ca"
|
|
|
|
# Casdoor SSO Credentials (from vault)
|
|
athena_casdoor_client_id: "{{ vault_athena_oauth_client_id }}"
|
|
athena_casdoor_client_secret: "{{ vault_athena_oauth_client_secret }}"
|
|
|
|
# Application Secrets (from vault)
|
|
athena_secret_key: "{{ vault_athena_secret_key }}"
|
|
athena_db_password: "{{ vault_athena_db_password }}"
|
|
|
|
# =============================================================================
|
|
# JupyterLab Configuration
|
|
# =============================================================================
|
|
jupyterlab_user: robert
|
|
jupyterlab_group: robert
|
|
jupyterlab_notebook_dir: /home/robert
|
|
jupyterlab_venv_dir: /home/robert/env/jupyter
|
|
|
|
# Ports
|
|
jupyterlab_port: 22081 # JupyterLab (localhost only)
|
|
jupyterlab_proxy_port: 22071 # OAuth2-Proxy (exposed to HAProxy)
|
|
|
|
# OAuth2-Proxy Configuration
|
|
jupyterlab_oauth2_proxy_dir: /etc/oauth2-proxy-jupyter
|
|
jupyterlab_oauth2_proxy_version: "7.6.0"
|
|
jupyterlab_domain: "ouranos.helu.ca"
|
|
jupyterlab_oauth2_oidc_issuer_url: "https://id.ouranos.helu.ca"
|
|
jupyterlab_oauth2_redirect_url: "https://jupyterlab.ouranos.helu.ca/oauth2/callback"
|
|
|
|
# OAuth2 Credentials (from vault)
|
|
jupyterlab_oauth_client_id: "{{ vault_jupyterlab_oauth_client_id }}"
|
|
jupyterlab_oauth_client_secret: "{{ vault_jupyterlab_oauth_client_secret }}"
|
|
jupyterlab_oauth2_cookie_secret: "{{ vault_jupyterlab_oauth2_cookie_secret }}"
|