From 4192b592db7bf9a97af5f5340be04e545e471752 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Beatrice=20Dellac=C3=A0?= Date: Sat, 29 Mar 2025 23:30:40 +0100 Subject: [PATCH] update keycloak --- deploy/keycloak/disabled/keycloak.yaml | 55 ------------- .../{disabled => }/keycloak-ingress.yaml | 0 deploy/keycloak/keycloak.yaml | 81 +++++++++++++------ 3 files changed, 55 insertions(+), 81 deletions(-) delete mode 100644 deploy/keycloak/disabled/keycloak.yaml rename deploy/keycloak/{disabled => }/keycloak-ingress.yaml (100%) diff --git a/deploy/keycloak/disabled/keycloak.yaml b/deploy/keycloak/disabled/keycloak.yaml deleted file mode 100644 index 0ab0058..0000000 --- a/deploy/keycloak/disabled/keycloak.yaml +++ /dev/null @@ -1,55 +0,0 @@ -apiVersion: v1 -kind: Service -metadata: - name: keycloak - namespace: keycloak - labels: - app: keycloak -spec: - ports: - - name: http - port: 8080 - targetPort: 8080 - selector: - app: keycloak - type: ClusterIP ---- -apiVersion: apps/v1 -kind: Deployment -metadata: - name: keycloak - namespace: keycloak - labels: - app: keycloak -spec: - replicas: 1 - selector: - matchLabels: - app: keycloak - template: - metadata: - labels: - app: keycloak - spec: - containers: - - name: keycloak - image: quay.io/keycloak/keycloak:26.1.4 - args: ["start-dev"] - env: - - name: KEYCLOAK_ADMIN - value: "admin" - - name: KEYCLOAK_ADMIN_PASSWORD - value: "admin" - - name: KC_PROXY_HEADERS - value: "xforwarded" - - name: KC_HTTP_ENABLED - value: "true" - - name: KC_HEALTH_ENABLED - value: "true" - ports: - - name: http - containerPort: 8080 - readinessProbe: - httpGet: - path: /health/ready - port: 9000 diff --git a/deploy/keycloak/disabled/keycloak-ingress.yaml b/deploy/keycloak/keycloak-ingress.yaml similarity index 100% rename from deploy/keycloak/disabled/keycloak-ingress.yaml rename to deploy/keycloak/keycloak-ingress.yaml diff --git a/deploy/keycloak/keycloak.yaml b/deploy/keycloak/keycloak.yaml index 9516250..0ab0058 100644 --- a/deploy/keycloak/keycloak.yaml +++ b/deploy/keycloak/keycloak.yaml @@ -1,26 +1,55 @@ -global: - defaultStorageClass: longhorn -proxy: edge -production: true -proxyHeaders: 'xforwarded' -adminIngress: - enabled: true - hostname: sso.panic.haus -ingress: - path: / - tls: true - enabled: true - controller: default - hostname: sso.panic.haus - annotations: - cert-manager.io/cluster-issuer: le-prod -postgresql: - enabled: - false -externalDatabase: - host: postgres-base-rw.postgres - user: keycloak - database: keycloakdb - password: u825qCNxfrBScKToTd3W9zKVPxpVsi7L -replicaCount: 3 - +apiVersion: v1 +kind: Service +metadata: + name: keycloak + namespace: keycloak + labels: + app: keycloak +spec: + ports: + - name: http + port: 8080 + targetPort: 8080 + selector: + app: keycloak + type: ClusterIP +--- +apiVersion: apps/v1 +kind: Deployment +metadata: + name: keycloak + namespace: keycloak + labels: + app: keycloak +spec: + replicas: 1 + selector: + matchLabels: + app: keycloak + template: + metadata: + labels: + app: keycloak + spec: + containers: + - name: keycloak + image: quay.io/keycloak/keycloak:26.1.4 + args: ["start-dev"] + env: + - name: KEYCLOAK_ADMIN + value: "admin" + - name: KEYCLOAK_ADMIN_PASSWORD + value: "admin" + - name: KC_PROXY_HEADERS + value: "xforwarded" + - name: KC_HTTP_ENABLED + value: "true" + - name: KC_HEALTH_ENABLED + value: "true" + ports: + - name: http + containerPort: 8080 + readinessProbe: + httpGet: + path: /health/ready + port: 9000