keycloak
A Helm chart for Keycloak
Requirements
Usage
To use this chart add the repo as follows:
If you had already added this repo earlier, run helm repo update
to retrieve the latest versions of the packages.
To install this chart simply run the following command:
To uninstall this chart simply run the following command:
Values
The following values can be used to adjust the helm chart.
Key | Type | Default | Description |
---|---|---|---|
certificate.annotations | object | {} |
Additional annotations for the certificate object. |
certificate.create | bool | false |
Create an Certificate object for the exposed chart. |
certificate.dnsNames | list | [] |
List of subject alternative names for the certificate. |
certificate.issuerRef.kind | string | "ClusterIssuer" |
Type of the referenced certificate issuer. Can be "Issuer" or "ClusterIssuer". |
certificate.issuerRef.name | string | "" |
Name of the referenced certificate issuer. |
certificate.labels | object | {} |
Additional labels for the certificate object. |
certificate.secretName | string | "" |
Name of the secret in which the certificate will be stored. Defaults to the first item in dnsNames. |
controller.annotations | object | {} |
Additional annotations for the controller object. |
controller.enabled | bool | true |
Create a workload for this chart. |
controller.kind | string | "StatefulSet" |
Type of the workload object. |
controller.labels | object | {} |
Additional labels for the controller object. |
controller.replicas | int | 1 |
The number of replicas. |
env[0] | object | {"name":"TZ","value":"UTC"} |
Timezone for the container. |
extraArgs | list | [] |
List of extra arguments for the container. |
fullnameOverride | string | "" |
|
image.pullPolicy | string | "IfNotPresent" |
The pull policy for the controller. |
image.repository | string | "quay.io/keycloak/keycloak" |
The repository to pull the image from. |
image.tag | string | .Chart.AppVersion |
The docker tag, if left empty chart's appVersion will be used. |
imagePullSecrets | list | [] |
|
ingressRoute.annotations | object | {} |
Additional annotations for the ingress route object. |
ingressRoute.create | bool | false |
Create an IngressRoute object for exposing this chart. |
ingressRoute.entryPoints | list | [] |
List of entry points on which the ingress route will be available. |
ingressRoute.labels | object | {} |
Additional labels for the ingress route object. |
ingressRoute.middlewares | list | [] |
List of middleware objects for the ingress route. |
ingressRoute.rule | string | "" |
Matching rule for the underlying router. |
ingressRoute.tlsSecretName | string | "" |
Use an existing secret containing the TLS certificate. |
nameOverride | string | "" |
|
ports.http.enabled | bool | true |
Enable the port inside the Controller and Service objects. |
ports.http.nodePort | string | nil |
The external port used if .service.type == NodePort . |
ports.http.port | int | 8080 |
The port used as internal port and cluster-wide port if .service.type == ClusterIP . |
ports.http.protocol | string | "TCP" |
The protocol used for the service. |
resources | object | {} |
Compute resources used by the container. More info here. |
secret.annotations | object | {} |
Additional annotations for the secret object. |
secret.create | bool | true |
Create a new secret containing sensitive values required for operation. |
secret.existingSecret | string | "" |
Use an existing secret to store the sensitive values. Please note: keys inside the existing secret must match the keys from below! |
secret.labels | object | {} |
Additional labels for the secret object. |
secret.values | string | nil |
Sensitive values used when not using an existing secret. Helm templates are supported for values. |
securityContext | object | {} |
Pod-level security attributes. More info here. |
service.annotations | object | {} |
Additional annotations for the service object. |
service.clusterIP | string | "" |
ClusterIP used if service type is ClusterIP . |
service.enabled | bool | true |
Create a service for exposing this chart. |
service.labels | object | {} |
Additional labels for the service object. |
service.loadBalancerIP | string | "" |
LoadBalancerIP if service type is LoadBalancer . |
service.loadBalancerSourceRanges | list | [] |
Allowed addresses when service type is LoadBalancer . |
service.type | string | "ClusterIP" |
The service type used. |
serviceAccount.name | string | "" |
Specify the service account used for the controller. |
serviceMonitor.annotations | object | {} |
Additional annotations for the service monitor object. |
serviceMonitor.enabled | bool | false |
Create a service monitor for prometheus operator. |
serviceMonitor.interval | string | "30s" |
How frequently the exporter should be scraped. |
serviceMonitor.labels | object | {} |
Additional labels for the service monitor object. |
serviceMonitor.timeout | string | "10s" |
Timeout value for individual scrapes. |
Maintainers
Name | Url | |
---|---|---|
pascaliske | info@pascaliske.dev | https://pascaliske.dev |
License
MIT – © 2024 Pascal Iske