how to get kubernetes outposts working

[hydazz]

I have tried for ages to get kubernetes outpost integration working; from my understanding the authentik-remote-cluster is required even in same cluster deployment? and this manages the outposts?

I have tried to deploy the remote cluster, but its not deploying. looking at the condition set serviceaccount.create should deploy the authentik-remote-cluster chart?
I've set

    serviceAccount:
      create: true

but it does nothing.
Other than deploying the remote cluster outside of my existing authentik template if its acutally needed, i cannot find much documentation on this...

My main goal is just to get the outpost integration working, apologies if im just being supid here
my entire authentik deployment:

apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
    name: authentik
    namespace: authentik
spec:
    interval: 5m
    install:
        createNamespace: true
        crds: CreateReplace
        remediation:
            retries: 3
    upgrade:
        crds: CreateReplace
        remediation:
            retries: 3
    chart:
        spec:
            chart: authentik
            version: 2024.8.3
            interval: 5m
            sourceRef:
                kind: HelmRepository
                name: authentik
                namespace: flux-system
    values:
        global:
            deploymentStrategy:
                type: Recreate
        authentik:
            secret_key: ENC[AES256_GCM,data:B5hUuUQKFL3zUwD69NLL+p6IVEYaweNmh4XakTwRgTUxmkocVaGIaGFbzL8w3qxvtgk=,iv:OIlXI8Tjuv5GXGRnMjg/jjZMs3eoSALSsi0StW1XLGE=,tag:xTgE/SnFnrx/yZyQ4WU3LQ==,type:str]
            postgresql:
                host: postgresql.database.svc.cluster.local
                user: authentik
                password: ENC[AES256_GCM,data:BoopI8eH+JItscXXbkY=,iv:Zf2IB/DfPcFl/61WNQt0+A0BIU1Oz4GmXWMhCLtxDu4=,tag:V/1wvCsdS9+PwTFOxjks8Q==,type:str]
            email:
                host: mail.domain.com
                port: "587"
                username: [email protected]
                password: ENC[AES256_GCM,data:d3rNh+xHFeBmGrPY3PCG4Q==,iv:Ia6h8IMDbMSuLkmDFaw9Be8KsCkw6JNsmuY/8I0Pv2M=,tag:Rgegk8kGRcAipywViP+moA==,type:str]
                use_tls: true
                timeout: "30"
                from: [email protected]
        server:
            ingress:
                enabled: true
                ingressClassName: external-nginx
                hosts:
                    - auth.domain.com
                tls:
                    - secretName: wildcard.domain.com
                      hosts:
                        - auth.domain.com
            podAnnotations:
                backup.velero.io/backup-volumes: media
            volumes:
                - name: media
                  persistentVolumeClaim:
                    claimName: authentik-media-pvc
                - name: custom-css
                  configMap:
                    name: authentik-custom-css
            volumeMounts:
                - name: media
                  mountPath: /media
                - name: custom-css
                  mountPath: /web/dist/custom.css
                  subPath: custom.css
        serviceAccount:
            create: true
        postgresql:
            enabled: false
        redis:
            enabled: true
            master:
                persistence:
                    size: 128Mi
        authentik-remote-cluster: # shot in the dark
            clusterRole:
                enabled: true