--- hetzner_server_type: cx11 hetzner_server_labels: "stage={{ stage }} service=keycloak" keycloak_postgres_host: "{{ shared_service_postgres_01_hostname }}" keycloak_postgres_database: "{{ stage }}_keycloak" keycloak_postgres_username: "{{ keycloak_postgres_database }}" keycloak_postgres_password: "keycloak-postgres-admin" keycloak_server_url: "http://localhost:{{ service_port_keycloak_external }}" # TODO shouldn't be declared in a static way -> must be stage specific keycloak: { realms: [ { name: 'docker', display_name: 'docker', users: [ { "username": "docker-admin", "password": "docker-admin", "email": "{{ docker_admin_email }}", } ], groups: [ { "name": "admin", }, { "name": "smardigo", }, { "name": "sensw", }, { "name": "ssp", }, { "name": "awx", }, ], clients: [ { clientId: '{{ docker_registry_oidc_client_id }}', name: '{{ docker_registry_oidc_client_id }}', admin_url: '', root_url: '', redirect_uris: ' [ "https://{{ stage }}-docker-registry-01.{{ domain }}/*", ]', secret: '{{ docker_registry_oidc_client_secret }}', web_origins: ' [ "https://{{ stage }}-docker-registry-01.{{ domain }}", ]', } ] }, { name: '{{ smardigo_management_oidc_realm }}', display_name: '{{ smardigo_management_oidc_realm }}', users: [ { "username": "connect-admin", "password": "connect-admin", "email": "{{ connect_admin_email }}", } ], clients: [ { clientId: '{{ smardigo_management_oidc_client_id }}', name: '{{ smardigo_management_oidc_client_id }}', admin_url: '', root_url: '', redirect_uris: ' [ "https://{{ stage }}-management-smardigo-01-connect.{{ domain }}/*", ]', secret: '{{ smardigo_management_oidc_client_secret }}', web_origins: ' [ "https://{{ stage }}-management-smardigo-01-connect.{{ domain }}", ]', } ] } ] }