blob: 48344f42babf2645723d584797b9842ddca42409 [file] [log] [blame]
Oleksandr Kozachenkob0093492023-09-06 21:43:47 +02001# Copyright (c) 2022 VEXXHOST, Inc.
2#
3# Licensed under the Apache License, Version 2.0 (the "License"); you may
4# not use this file except in compliance with the License. You may obtain
5# a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
11# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
12# License for the specific language governing permissions and limitations
13# under the License.
14
vexxhost-bot32c5d342024-10-26 12:00:31 -040015_keycloak_ingress_annotations:
16 cert-manager.io/cluster-issuer: "{{ keycloak_ingress_cluster_issuer }}"
17
Oleksandr Kozachenkob0093492023-09-06 21:43:47 +020018_keycloak_helm_values:
19 # Note(okozachenko1203): Mysql vendor is not supported by bitnami helm chart. As a workaround,
20 # we have to define jdbc connection string explicitly along side
21 # `externalDatabase` helm values.
22 extraEnvVars:
23 - name: KC_PROXY
24 value: edge
25 - name: KC_DB
26 value: mysql
27 - name: KC_DB_URL
28 value: "jdbc:mysql://{{ openstack_helm_endpoints.oslo_db.hosts.default }}.openstack:3306/{{ keycloak_database_name }}"
29 - name: KC_DB_USERNAME
30 value: "{{ keycloak_database_username }}"
31 - name: KC_DB_PASSWORD
32 valueFrom:
33 secretKeyRef:
34 key: db-password
35 name: keycloak-externaldb
36 command:
37 - /opt/keycloak/bin/kc.sh
38 - --verbose
39 - start
40 - --auto-build
41 - --health-enabled=true
42 - --http-enabled=true
43 - --http-port=8080
44 - --hostname-strict=false
45 - --spi-events-listener-jboss-logging-success-level=info
46 - --spi-events-listener-jboss-logging-error-level=warn
47 - --transaction-xa-enabled=false
vexxhost-bot41408df2024-07-11 13:47:55 +020048 - --metrics-enabled=true
Oleksandr Kozachenkob0093492023-09-06 21:43:47 +020049 auth:
50 adminPassword: "{{ keycloak_admin_password }}"
51 adminUser: "{{ keycloak_admin_username }}"
52 externalDatabase:
53 host: "{{ openstack_helm_endpoints.oslo_db.hosts.default }}.openstack"
54 port: 3306
55 database: "{{ keycloak_database_name }}"
56 user: "{{ keycloak_database_username }}"
57 password: "{{ keycloak_database_password }}"
58 image:
59 registry: "{{ atmosphere_images['keycloak'] | vexxhost.kubernetes.docker_image('domain') }}"
60 repository: "{{ atmosphere_images['keycloak'] | vexxhost.kubernetes.docker_image('path') }}"
61 tag: "{{ atmosphere_images['keycloak'] | vexxhost.kubernetes.docker_image('tag') }}"
62 postgresql:
63 enabled: false
64 production: true
65 proxy: edge
Mohammed Naser73dcb9d2024-01-02 16:23:43 -050066 startupProbe:
67 enabled: true
68 initialDelaySeconds: 5
69 failureThreshold: 120
Oleksandr Kozachenko72da0122023-10-17 22:52:39 +020070 nodeSelector:
71 openstack-control-plane: enabled
vexxhost-bot41408df2024-07-11 13:47:55 +020072 metrics:
73 enabled: true