-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathk8s-keycloak.yaml
110 lines (110 loc) · 2.75 KB
/
k8s-keycloak.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
apiVersion: apps/v1
kind: Deployment
metadata:
name: postgres-keycloak
spec:
replicas: 1
template:
metadata:
name: postgres-keycloak
labels:
app: postgres-keycloak
spec:
containers:
- name: postgresql-keycloak
image: postgres:12.0
env:
- name: POSTGRES_DB
value: keycloak
- name: POSTGRES_USER
value: keycloak
- name: POSTGRES_PASSWORD
value: keycloak
ports:
- containerPort: 5432
readinessProbe:
exec:
command: ["psql", "-w", "-U", "keycloak", "-d", "keycloak", "-c", "SELECT 1"]
initialDelaySeconds: 15
timeoutSeconds: 2
livenessProbe:
exec:
command: ["psql", "-w", "-U", "keycloak", "-d", "keycloak", "-c", "SELECT 1"]
initialDelaySeconds: 45
timeoutSeconds: 2
selector:
matchLabels:
app: postgres-keycloak
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: keycloak
spec:
replicas: 1
template:
metadata:
name: keycloak
labels:
app: keycloak
spec:
containers:
- name: keycloak
image: keycloak
env:
- name: PROXY_ADDRESS_FORWARDING
value: "true"
- name: DB_VENDOR
value: POSTGRES
- name: DB_ADDR
value: postgres-keycloak
- name: DB_DATABASE
value: keycloak
- name: DB_USER
value: keycloak
- name: DB_PASSWORD
value: keycloak
- name: DB_PORT
value: "5432"
- name: POSTGRES_PORT
value: "5432"
- name: KEYCLOAK_USER
value: admin
- name: KEYCLOAK_PASSWORD
value: admin
- name: KEYCLOAK_LOGLEVEL
value: INFO
- name: ROOT_LOGLEVEL
value: FATAL
args: ['-Dkeycloak.migration.action=import','-Dkeycloak.migration.provider=singleFile','-Dkeycloak.migration.file=/tmp/realm.json','-Dkeycloak.migration.strategy=IGNORE_EXISTING']
ports:
- containerPort: 8080
initContainers:
- name: init-psql
image: busybox
command: ['sh', '-c', 'until nslookup postgres-keycloak; do echo waiting for postgres; sleep 2; done;']
selector:
matchLabels:
app: keycloak
---
apiVersion: v1
kind: Service
metadata:
name: keycloak
spec:
selector:
app: keycloak
ports:
- port: 8080
targetPort: 8080
---
apiVersion: v1
kind: Service
metadata:
name: postgres-keycloak
spec:
selector:
app: postgres-keycloak
ports:
- port: 5432
targetPort: 5432