update keycloak

deploy/keycloak/disabled/keycloak-ingress.yaml

@@ -7,7 +7,7 @@ spec:
     - hosts:
         - sso.panic.haus
   rules:
-    - host: sso.panic.hausT
+    - host: sso.panic.haus
       http:
         paths:
           - path: /

deploy/keycloak/disabled/keycloak.yaml

@@ -0,0 +1,55 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: keycloak
+  namespace: keycloak
+  labels:
+    app: keycloak
+spec:
+  ports:
+    - name: http
+      port: 8080
+      targetPort: 8080
+  selector:
+    app: keycloak
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: keycloak
+  namespace: keycloak
+  labels:
+    app: keycloak
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: keycloak
+  template:
+    metadata:
+      labels:
+        app: keycloak
+    spec:
+      containers:
+        - name: keycloak
+          image: quay.io/keycloak/keycloak:26.1.4
+          args: ["start-dev"]
+          env:
+            - name: KEYCLOAK_ADMIN
+              value: "admin"
+            - name: KEYCLOAK_ADMIN_PASSWORD
+              value: "admin"
+            - name: KC_PROXY_HEADERS
+              value: "xforwarded"
+            - name: KC_HTTP_ENABLED
+              value: "true"
+            - name: KC_HEALTH_ENABLED
+              value: "true"
+          ports:
+            - name: http
+              containerPort: 8080
+          readinessProbe:
+            httpGet:
+              path: /health/ready
+              port: 9000

deploy/keycloak/keycloak.yaml

@@ -1,53 +1,26 @@
-apiVersion: v1
+global:
-kind: Service
+  defaultStorageClass: longhorn
-metadata:
+proxy: edge
-  name: keycloak
+production: true
-  labels:
+proxyHeaders: 'xforwarded'
-    app: keycloak
+adminIngress:
-spec:
+  enabled: true
-  ports:
+  hostname: sso.panic.haus
-    - name: http
+ingress:
-      port: 8080
+  path: /
-      targetPort: 8080
+  tls: true
-  selector:
+  enabled: true
-    app: keycloak
+  controller: default
-  type: ClusterIP
+  hostname: sso.panic.haus
----
+  annotations:
-apiVersion: apps/v1
+    cert-manager.io/cluster-issuer: le-prod
-kind: Deployment
+postgresql:
-metadata:
+  enabled:
-  name: keycloak
+    false
-  labels:
+externalDatabase:
-    app: keycloak
+  host: postgres-base-rw.postgres
-spec:
+  user: keycloak
-  replicas: 1
+  database: keycloakdb
-  selector:
+  password: u825qCNxfrBScKToTd3W9zKVPxpVsi7L
-    matchLabels:
+replicaCount: 3
-      app: keycloak
+
-  template:
-    metadata:
-      labels:
-        app: keycloak
-    spec:
-      containers:
-        - name: keycloak
-          image: quay.io/keycloak/keycloak:26.1.4
-          args: ["start-dev"]
-          env:
-            - name: KEYCLOAK_ADMIN
-              value: "admin"
-            - name: KEYCLOAK_ADMIN_PASSWORD
-              value: "admin"
-            - name: KC_PROXY_HEADERS
-              value: "xforwarded"
-            - name: KC_HTTP_ENABLED
-              value: "true"
-            - name: KC_HEALTH_ENABLED
-              value: "true"
-          ports:
-            - name: http
-              containerPort: 8080
-          readinessProbe:
-            httpGet:
-              path: /health/ready
-              port: 9000