keycloak
A Helm chart for Keycloak
Requirements
Usage
To use this chart add the repo as follows:
If you had already added this repo earlier, run helm repo update to retrieve the latest versions of the packages.
To install this chart simply run the following command:
To uninstall this chart simply run the following command:
Values
The following values can be used to adjust the helm chart.
| Key | Type | Default | Description |
|---|---|---|---|
| controller.annotations | object | {} |
Additional annotations for the controller object. |
| controller.enabled | bool | true |
Create a workload for this chart. |
| controller.kind | string | "StatefulSet" |
Type of the workload object. |
| controller.labels | object | {} |
Additional labels for the controller object. |
| controller.replicas | int | 1 |
The number of replicas. |
| env[0] | object | {"name":"TZ","value":"UTC"} |
Timezone for the container. |
| extraArgs | list | [] |
List of extra arguments for the container. |
| fullnameOverride | string | "" |
|
| image.pullPolicy | string | "IfNotPresent" |
The pull policy for the controller. |
| image.repository | string | "quay.io/keycloak/keycloak" |
The repository to pull the image from. |
| image.tag | string | .Chart.AppVersion |
The docker tag, if left empty chart's appVersion will be used. |
| imagePullSecrets | list | [] |
|
| nameOverride | string | "" |
|
| ports.http.enabled | bool | true |
Enable the port inside the Controller and Service objects. |
| ports.http.nodePort | string | nil |
The external port used if .service.type == NodePort. |
| ports.http.port | int | 8080 |
The port used as internal port and cluster-wide port if .service.type == ClusterIP. |
| ports.http.protocol | string | "TCP" |
The protocol used for the service. |
| resources | object | {} |
Compute resources used by the container. More info here. |
| secret.annotations | object | {} |
Additional annotations for the secret object. |
| secret.create | bool | true |
Create a new secret containing sensitive values required for operation. |
| secret.existingSecret | string | "" |
Use an existing secret to store the sensitive values. Please note: keys inside the existing secret must match the keys from below! |
| secret.labels | object | {} |
Additional labels for the secret object. |
| secret.values | string | nil |
Sensitive values used when not using an existing secret. Helm templates are supported for values. |
| securityContext | object | {} |
Pod-level security attributes. More info here. |
| service.annotations | object | {} |
Additional annotations for the service object. |
| service.clusterIP | string | "" |
ClusterIP used if service type is ClusterIP. |
| service.enabled | bool | true |
Create a service for exposing this chart. |
| service.labels | object | {} |
Additional labels for the service object. |
| service.loadBalancerIP | string | "" |
LoadBalancerIP if service type is LoadBalancer. |
| service.loadBalancerSourceRanges | list | [] |
Allowed addresses when service type is LoadBalancer. |
| service.type | string | "ClusterIP" |
The service type used. |
| serviceAccount.name | string | "" |
Specify the service account used for the controller. |
| serviceMonitor.annotations | object | {} |
Additional annotations for the service monitor object. |
| serviceMonitor.enabled | bool | false |
Create a service monitor for prometheus operator. |
| serviceMonitor.interval | string | "30s" |
How frequently the exporter should be scraped. |
| serviceMonitor.labels | object | {} |
Additional labels for the service monitor object. |
| serviceMonitor.timeout | string | "10s" |
Timeout value for individual scrapes. |
Maintainers
| Name | Url | |
|---|---|---|
| pascaliske | info@pascaliske.dev | https://pascaliske.dev |
License
MIT – © 2023 Pascal Iske