From 25ffd2a720f12009da593aeb23374ce7fc330964 Mon Sep 17 00:00:00 2001
From: GeorgeRaven <GeorgeRavenCommunity@pm.me>
Date: Sun, 7 Sep 2025 11:37:21 +0100
Subject: [PATCH] Fixed openwebui oidc

---
 charts/open-webui/templates/oidc/oidc-client.yaml | 4 ++--
 charts/open-webui/templates/oidc/oidc-scopes.yaml | 4 ++--
 charts/open-webui/templates/oidc/oidc-urls.yaml   | 2 +-
 charts/open-webui/values.yaml                     | 6 +++++-
 4 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/charts/open-webui/templates/oidc/oidc-client.yaml b/charts/open-webui/templates/oidc/oidc-client.yaml
index 5fb2a8b6..23e23634 100644
--- a/charts/open-webui/templates/oidc/oidc-client.yaml
+++ b/charts/open-webui/templates/oidc/oidc-client.yaml
@@ -6,10 +6,10 @@ spec:
   # https://chat.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/keycloak/
   deletionPolicy: Delete
   providerConfigRef:
-    name: owncloak
+    name: {{ .Values.oidc.config.ref }}
   forProvider:
     realmIdRef:
-      name: {{ .Values.oidc.realm }}
+      name: {{ .Values.oidc.realm.ref }}
     name: Chat
     description: "LLM interface client for authentication"
     accessType: CONFIDENTIAL
diff --git a/charts/open-webui/templates/oidc/oidc-scopes.yaml b/charts/open-webui/templates/oidc/oidc-scopes.yaml
index 4c3b7f76..f0d31e4b 100644
--- a/charts/open-webui/templates/oidc/oidc-scopes.yaml
+++ b/charts/open-webui/templates/oidc/oidc-scopes.yaml
@@ -6,7 +6,7 @@ spec:
   deletionPolicy: Delete
   forProvider:
     realmIdRef:
-      name: {{ .Values.oidc.realm }}
+      name: {{ .Values.oidc.realm.ref }}
     clientIdRef:
       name: chat
     defaultScopes:
@@ -21,4 +21,4 @@ spec:
     # non-standard extras
     - roles-in-all-tokens # Add keycloak variant of roles to all tokens
   providerConfigRef:
-    name: owncloak
+    name: {{ .Values.oidc.config.ref }}
diff --git a/charts/open-webui/templates/oidc/oidc-urls.yaml b/charts/open-webui/templates/oidc/oidc-urls.yaml
index 6b15eea8..af230aa2 100644
--- a/charts/open-webui/templates/oidc/oidc-urls.yaml
+++ b/charts/open-webui/templates/oidc/oidc-urls.yaml
@@ -1,4 +1,4 @@
-{{ $issuerUrl := printf "https://auth.%s/realms/%s" .Values.environment.baseDomain .Values.oidc.realm }}
+{{ $issuerUrl := printf "https://auth.%s/realms/%s" .Values.environment.baseDomain .Values.oidc.realm.name }}
 apiVersion: v1
 kind: ConfigMap
 metadata:
diff --git a/charts/open-webui/values.yaml b/charts/open-webui/values.yaml
index 8e75b813..f1be3760 100644
--- a/charts/open-webui/values.yaml
+++ b/charts/open-webui/values.yaml
@@ -102,7 +102,11 @@ open-webui:
             - amd64
 
 oidc:
-  realm: owncloak-deepcypher
+  realm:
+    name: deepcypher
+    ref: owncloak-deepcypher
+  config:
+    ref: owncloak
 
 environment:
   name: unknown # not to be used for hard checks but to display to user