You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
51 lines
1.5 KiB
YAML
51 lines
1.5 KiB
YAML
---
|
|
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: "iam"
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: "iam"
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: "iam"
|
|
spec:
|
|
hostAliases:
|
|
- ip: "{{ .Values.sharedService.keycloak.host.ip }}"
|
|
hostnames:
|
|
- "{{ .Values.sharedService.keycloak.host.name }}"
|
|
containers:
|
|
- name: "iam"
|
|
image: "{{ .Values.harbor.host.name }}/{{ .Values.iam.image.name }}:{{ .Values.iam.image.version }}"
|
|
imagePullPolicy: Always
|
|
env:
|
|
- name: SMA_JWT_ENABLED
|
|
value: "true"
|
|
- name: SMA_JWT_SECRET
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: "iam-secrets"
|
|
key: JWT_SECRET
|
|
|
|
- name: IAM_KEYCLOAK_AUTH_SERVER_URL
|
|
value: "https://{{ .Values.sharedService.keycloak.host.name }}/auth"
|
|
- name: IAM_KEYCLOAK_ADMIN_USER
|
|
value: "{{ .Values.iam.keycloak.username }}"
|
|
- name: IAM_KEYCLOAK_ADMIN_PASSWORD
|
|
value: "{{ .Values.iam.keycloak.username }}"
|
|
|
|
- name: SERVER_ERROR_INCLUDE_MESSAGE
|
|
value: "always"
|
|
ports:
|
|
- containerPort: 8080
|
|
- containerPort: 8081
|
|
initContainers:
|
|
- name: init-keycloak
|
|
image: busybox:1.28
|
|
command: ['sh', '-c', "until nslookup {{ .Values.sharedService.keycloak.host.name }}; do echo waiting for keycloak; sleep 2; done"]
|
|
imagePullSecrets:
|
|
- name: "{{ .Values.harbor.pull_secret }}"
|