Skip to content

Commit 9566048

Browse files
johnstcnjohnstcn
committed
add OIDC and OTEL env vars
1 parent bf66ad1 commit 9566048

File tree

1 file changed

+38
-2
lines changed

1 file changed

+38
-2
lines changed

scaletest/terraform/k8s/coder.tf

Lines changed: 38 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -60,12 +60,20 @@ data "kubernetes_secret" "coder_tls" {
6060
}
6161
}
6262

63+
# Also need an OTEL collector deployed. Manual for now.
64+
data "kubernetes_service" "otel_collector" {
65+
metadata {
66+
namespace = kubernetes_namespace.coder_namespace.metadata.0.name
67+
name = "otel-collector"
68+
}
69+
}
70+
6371
resource "helm_release" "coder-chart" {
6472
repository = local.coder_helm_repo
6573
chart = local.coder_helm_chart
6674
name = local.coder_release_name
6775
version = var.coder_chart_version
68-
namespace = kubernetes_namespace.coder_namespace
76+
namespace = kubernetes_namespace.coder_namespace.metadata.0.name
6977
values = [<<EOF
7078
coder:
7179
affinity:
@@ -124,6 +132,34 @@ coder:
124132
secretKeyRef:
125133
key: psk
126134
name: "${kubernetes_secret.provisionerd_psk.metadata.0.name}"
135+
# Enable OIDC
136+
- name: "CODER_OIDC_ISSUER_URL"
137+
valueFrom:
138+
secretKeyRef:
139+
key: issuer-url
140+
name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
141+
- name: "CODER_OIDC_EMAIL_DOMAIN"
142+
valueFrom:
143+
secretKeyRef:
144+
key: email-domain
145+
name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
146+
- name: "CODER_OIDC_CLIENT_ID"
147+
valueFrom:
148+
secretKeyRef:
149+
key: client-id
150+
name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
151+
- name: "CODER_OIDC_CLIENT_SECRET"
152+
valueFrom:
153+
secretKeyRef:
154+
key: client-secret
155+
name: "${data.kubernetes_secret.coder_oidc.metadata.0.name}"
156+
# Send OTEL traces to the cluster-local collector to sample 10%
157+
- name: "OTEL_EXPORTER_OTLP_ENDPOINT"
158+
value: "http://${data.kubernetes_service.otel_collector.metadata.0.name}.${kubernetes_namespace.coder_namespace.metadata.0.name}.svc.cluster.local:4317"
159+
- name: "OTEL_TRACES_SAMPLER"
160+
value: parentbased_traceidratio
161+
- name: "OTEL_TRACES_SAMPLER_ARG"
162+
value: "0.1"
127163
image:
128164
repo: ${var.coder_image_repo}
129165
tag: ${var.coder_image_tag}
@@ -158,7 +194,7 @@ resource "helm_release" "provisionerd_chart" {
158194
chart = local.provisionerd_helm_chart
159195
name = local.provisionerd_release_name
160196
version = var.provisionerd_chart_version
161-
namespace = kubernetes_namespace.coder_namespace
197+
namespace = kubernetes_namespace.coder_namespace.metadata.0.name
162198
values = [<<EOF
163199
coder:
164200
affinity:

0 commit comments

Comments
 (0)