Adds extra header options to Helm chart

Signed-off-by: JoshVanL <[email protected]>

Author: JoshVanL

deploy/charts/kube-oidc-proxy/templates/_helpers.tpl

@@ -55,4 +55,4 @@ Required claims serialized to CLI argument
 {{- end -}}
 {{ join "," $local }}
 {{- end -}}
-{{- end -}}
+{{- end -}}

deploy/charts/kube-oidc-proxy/templates/deployment.yaml

@@ -68,6 +68,12 @@ spec:
           - "--token-passthrough-audiences={{ join "," .Values.tokenPassthrough.audiences }}"
           {{ end }}
           {{ end }}
+          {{- if .Values.extraImpersonationHeaders.clientIP }}
+          - "--extra-user-header-client-ip"
+          {{ end }}
+          {{- if .Values.extraImpersonationHeaders.headers }}
+          - "--extra-user-headers={{ .Values.extraImpersonationHeaders.headers }}"
+          {{ end }}
         resources:
           {{- toYaml .Values.resources | nindent 12 }}
         env:

deploy/charts/kube-oidc-proxy/values.yaml

@@ -54,6 +54,14 @@ tokenPassthrough:
   enabled: false
   audiences: []
 
+# To add extra impersonation headers
+# https://github.com/jetstack/kube-oidc-proxy/blob/master/docs/tasks/extra-impersonation-headers.md
+extraImpersonationHeaders:
+  clientIP: false
+  headers: #{}
+  #headers: key1=foo,key2=bar,key1=bar
+
+
 ingress:
   enabled: false
   annotations: {}