Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: default keycloak realm envs #455

Merged
merged 10 commits into from
Jun 6, 2024
Merged

fix: default keycloak realm envs #455

Changes from 9 commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
ea3fc5e
fix: default keycloak realm envs
UnicornChance Jun 4, 2024
8ecd17b
Merge branch 'main' into identity-env-vars
UnicornChance Jun 4, 2024
8be1c51
fix: add default value for ocsp fail open
UnicornChance Jun 4, 2024
8868b65
fix: remove default realm values, add commented override values
UnicornChance Jun 5, 2024
b7aa12d
fix: break out test apps for less ci cpu usage
UnicornChance Jun 5, 2024
3c1cfa6
fix: revert breaking out test apps
UnicornChance Jun 5, 2024
14048a2
Merge branch 'main' into identity-env-vars
UnicornChance Jun 5, 2024
c5ac705
fix: linting and default realmInitEnv
UnicornChance Jun 5, 2024
a40be2e
Merge branch 'main' into identity-env-vars
UnicornChance Jun 6, 2024
f9d8970
fix: add default value for env google idp enabled
UnicornChance Jun 6, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
20 changes: 14 additions & 6 deletions src/keycloak/chart/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,12 +15,20 @@ domain: "###ZARF_VAR_DOMAIN###"
# The primary Keycloak realm
realm: uds

# UDS Identity Config Environment Variables. More info here: https://github.com/defenseunicorns/uds-identity-config/blob/main/docs/CUSTOMIZE.md#templated-realm-values
realmInitEnv:
GOOGLE_IDP_ENABLED: false
# Other UDS Identity Config fields that will be used in the realm.json initalization of keycloak
# GOOGLE_IDP_CLIENTID: ""
# GOOGLE_IDP_CLIENT_SECRET: ""
# UDS Identity Config Realm Environment Variables. More info here: https://github.com/defenseunicorns/uds-identity-config/blob/main/docs/CUSTOMIZE.md#templated-realm-values
realmInitEnv: {}
# GOOGLE_IDP_ENABLED: true
# GOOGLE_IDP_ID: ""
# GOOGLE_IDP_SIGNING_CERT: ""
# GOOGLE_IDP_NALE_ID_FORMAT: ""
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this supposed to be NAME? Just realized when typing up release announcement...

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#462

# GOOGLE_IDP_CORE_ENTITY_ID: ""
# GOOGLE_IDP_ADMIN_GROUP: ""
# GOOGLE_IDP_AUDITOR_GROUP: ""
# PASSWORD_POLICY: "hashAlgorithm(pbkdf2-sha256) and forceExpiredPasswordChange(90) and specialChars(2) and lowerCase(0) and upperCase(0) and passwordHistory(5) and length(12) and notUsername(undefined) and digits(0)"
# EMAIL_VERIFICATION_ENABLED: true
# OTP_ENABLED: true
# TERMS_AND_CONDITIONS_ENABLED: true
# REALM_X509_OCSP_FAIL_OPEN: true

# Generates an initial password for first admin user - only use if install is headless
# (i.e. cannot hit keycloak UI with `zarf connect keycloak`), password should be changed after initial login
Expand Down