Skip to content

feat(soludev): add opencode deployment with oauth2-proxy protection#5

Open
Kaiohz wants to merge 2 commits into
mainfrom
feat/opencode-deployment
Open

feat(soludev): add opencode deployment with oauth2-proxy protection#5
Kaiohz wants to merge 2 commits into
mainfrom
feat/opencode-deployment

Conversation

@Kaiohz
Copy link
Copy Markdown
Collaborator

@Kaiohz Kaiohz commented Apr 27, 2026

Summary

  • Add OpenCode web interface deployment in soludev namespace
  • Configure oauth2-proxy with Logto OIDC authentication
  • Add ingress for opencode.soludev.tech
  • Add persistent volume for data storage
  • Add external secrets for opencode and oauth2-proxy credentials

Architecture

Internet → Ingress (opencode.soludev.tech) → oauth2-proxy → opencode:4096

Prerequisites

  1. Add secrets in OpenBao:

    • soludev/opencode with OPENROUTER_API_KEY, OPENCODE_SERVER_PASSWORD
    • soludev/oauth2-proxy with OAUTH2_PROXY_CLIENT_ID, OAUTH2_PROXY_CLIENT_SECRET, OAUTH2_PROXY_COOKIE_SECRET

  2. Create Logto application for opencode.soludev.tech with callback URL: https://opencode.soludev.tech/oauth2/callback

Files added

  • dev/soludev/opencode/ - OpenCode deployment
  • dev/soludev/oauth2-proxy/ - OAuth2 proxy configuration
  • config/dev/oauth2-proxy/soludev/values.yaml - Helm values

Test plan

  1. Merge PR
  2. Wait for Flux reconciliation
  3. Add secrets to OpenBao
  4. Access https://opencode.soludev.tech
  5. Login via Logto
  6. Verify OpenCode web interface works

Yohan added 2 commits April 27, 2026 06:14
feat(soludev): add opencode deployment with oauth2-proxy protection
0f4a13d 
- Add OpenCode web interface deployment in soludev namespace
- Configure oauth2-proxy with Logto OIDC authentication
- Add ingress for opencode.soludev.tech
- Add persistent volume for data storage
- Add external secrets for opencode and oauth2-proxy credentials

Host: opencode.soludev.tech
Auth: Logto via oauth2-proxy
fix(soludev): pin opencode to v0.0.55 instead of latest
49b00e6
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Kaiohz