-
Notifications
You must be signed in to change notification settings - Fork 6
/
app-config.yaml
100 lines (92 loc) · 2.89 KB
/
app-config.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
# Base config
app:
title: Operate First Cloud
baseUrl: http://localhost:7007
support:
url: https://github.com/operate-first/support/issues
items: # Used by common SupportButton component
- icon: github
title: Issues
links:
- url: https://github.com/operate-first/support/issues
title: GitHub Issues
- title: Slack Chatroom
icon: chat
links:
- url: https://join.slack.com/t/operatefirst/shared_invite/zt-o2gn4wn8-O39g7sthTAuPCvaCNRnLww
title: "#support"
organization:
name: Operate First Cloud
backend:
# Used for enabling authentication, secret is shared by all backend plugins
# See https://backstage.io/docs/tutorials/backend-to-backend-auth for
# information on the format
auth:
keys:
- secret: ${BACKEND_SECRET}
baseUrl: http://localhost:7007
listen: 0.0.0.0:7007
# Content-Security-Policy directives follow the Helmet format: https://helmetjs.github.io/#reference
# Default Helmet Content-Security-Policy values can be removed by setting the key to false
csp:
connect-src: ["'self'", "http:", "https:"]
img-src: ["'self'", "https:", "data:"]
default-src: ["'self'", "https:"]
cors:
origin: http://localhost:7007
methods: [GET, HEAD, PATCH, POST, PUT, DELETE]
credentials: true
# This is for local developement only, it is not recommended to use this in production
# The production database configuration is stored in app-config.production.yaml
cache:
store: memory
# Use this to configure a working directory for the scaffolder, defaults to the OS temp-dir
# workingDirectory: /tmp
reading:
allow:
- host: "argocd.operate-first.cloud"
- host: "raw.githubusercontent.com"
- host: "gist.githubusercontent.com"
- host: "docs.pulpproject.org"
proxy:
"/argocd/api":
# url to the api of your hosted argoCD instance
target: https://argocd.operate-first.cloud/api/v1/
changeOrigin: true
# this line is required if your hosted argoCD instance has self-signed certificate
secure: true
headers:
Cookie:
$env: ARGOCD_AUTH_TOKEN
"/grafana/api":
target: https://grafana.operate-first.cloud
headers:
Authorization: Bearer ${GRAFANA_TOKEN}
"/prometheus/api":
target: https://rbac-query-proxy-open-cluster-management-observability.apps.moc-infra.massopen.cloud/api/v1
headers:
Authorization: Bearer ${MCO_TOKEN}
grafana:
# Publicly accessible domain
domain: https://grafana.operate-first.cloud
# Reference documentation http://backstage.io/docs/features/techdocs/configuration
techdocs:
builder: "local"
generator:
runIn: "local"
publisher:
type: "local"
catalog:
readonly: true
rules:
- allow:
- Component
- System
- Location
- User
- Group
- Domain
- Api
- Resource
permission:
enabled: true