Untitled

mail@pastecode.io avatar
unknown
plain_text
2 years ago
1.8 kB
2
Indexable
Never
---
apiVersion: helm.toolkit.fluxcd.io/v2beta1
kind: HelmRelease
metadata:
  name: keycloak
  namespace: keycloak-testing
spec:
  releaseName: keycloak
  chart:
    spec:
      chart: keycloakx
      version: 1.3.2
      sourceRef:
        kind: HelmRepository
        name: codecentric
        namespace: flux-system
  interval: 5m
  values:
    # minimum replica count MUST be 2, changing to 1 will break all startup config we have in place.
    imagePullSecrets:
      - name: dockerhub-auth
    replicas: 2
    serviceAccount:
      # Specifies whether a service account should be created
      create: false
    # probes
    livenessProbe: |
      httpGet:
        path: /auth/
        port: http
      initialDelaySeconds: 0
      timeoutSeconds: 5
    readinessProbe: |
      httpGet:
        path: /auth/realms/master
        port: http
      initialDelaySeconds: 30
      timeoutSeconds: 1
    startupProbe: |
      httpGet:
        path: /auth/
        port: http
      initialDelaySeconds: 30
      timeoutSeconds: 1
      failureThreshold: 60
      periodSeconds: 10
    resources:
      limits:
        memory: 4Gi
      requests:
        memory: 2Gi
    # ingress
    ingress:
      enabled: false
    command:
      - "/opt/keycloak/bin/kc.sh"
      - "start"
      - "--auto-build"
      - "--http-relative-path /auth"
      - "--http-enabled=true"
      - "--http-port=80"
      - "--hostname-strict=false"
      - "--hostname-strict-https=false"
    extraEnv: |
      - name: KEYCLOAK_ADMIN
        value: admin
      - name: KEYCLOAK_ADMIN_PASSWORD
        value: admin
      - name: JAVA_OPTS_APPEND
        value: >-
          -Djgroups.dns.query={{ include "keycloak.fullname" . }}-headless
    extraPorts:
      - name: admin
        containerPort: 9990
        protocol: TCP