GoogleCloudPlatform · blackzlq · Mar 11, 2024 · Mar 11, 2024
diff --git a/applications/rag/frontend/main.tf b/applications/rag/frontend/main.tf
@@ -26,6 +26,7 @@ module "iap_auth" {
 
   project_id               = var.project_id
   namespace                = var.namespace
+  support_email            = var.support_email
   app_name                 = "frontend"
   brand                    = var.brand
   k8s_ingress_name         = var.k8s_ingress_name
@@ -57,6 +58,9 @@ resource "kubernetes_service" "rag_frontend_service" {
   metadata {
     name      = "rag-frontend"
     namespace = var.namespace
+    annotations = var.add_auth ? {
+      "beta.cloud.google.com/backend-config" : jsonencode({ "default" = var.k8s_backend_config_name })
+    } : {}
   }
   spec {
     selector = {

diff --git a/applications/rag/main.tf b/applications/rag/main.tf
@@ -161,6 +161,7 @@ module "jupyterhub" {
   client_id                = var.jupyter_client_id
   client_secret            = var.jupyter_client_secret
   k8s_ingress_name         = var.jupyter_k8s_ingress_name
+  k8s_iap_secret_name      = var.jupyter_k8s_iap_secret_name
   k8s_managed_cert_name    = var.jupyter_k8s_managed_cert_name
   k8s_backend_config_name  = var.jupyter_k8s_backend_config_name
   k8s_backend_service_name = var.jupyter_k8s_backend_service_name

diff --git a/modules/jupyter/main.tf b/modules/jupyter/main.tf
@@ -23,6 +23,7 @@ module "iap_auth" {
 
   project_id               = var.project_id
   namespace                = var.namespace
+  support_email            = var.support_email
   app_name                 = "jupyter"
   brand                    = var.brand
   k8s_ingress_name         = var.k8s_ingress_name