From c5f82c0948180dedc5be7ec6bf3ecd9ed5dbe9ee Mon Sep 17 00:00:00 2001 From: Stefan Reimer Date: Fri, 16 Aug 2024 13:06:32 +0000 Subject: [PATCH] feat: major version bump for auth / keycloak --- charts/kubezero-auth/Chart.yaml | 5 ++--- charts/kubezero-auth/README.md | 9 ++++----- charts/kubezero-auth/values.yaml | 15 ++++++++++----- 3 files changed, 16 insertions(+), 13 deletions(-) diff --git a/charts/kubezero-auth/Chart.yaml b/charts/kubezero-auth/Chart.yaml index 58b2bbf9..b3807643 100644 --- a/charts/kubezero-auth/Chart.yaml +++ b/charts/kubezero-auth/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 name: kubezero-auth description: KubeZero umbrella chart for all things Authentication and Identity management type: application -version: 0.4.7 +version: 0.5.0 appVersion: 22.0.5 home: https://kubezero.com icon: https://cdn.zero-downtime.net/assets/kubezero/logo-small-64.png @@ -16,8 +16,7 @@ dependencies: - name: kubezero-lib version: ">= 0.1.6" repository: https://cdn.zero-downtime.net/charts/ - - #! renovate: datasource=docker - name: keycloak + - name: keycloak repository: "oci://registry-1.docker.io/bitnamicharts" version: 22.1.1 condition: keycloak.enabled diff --git a/charts/kubezero-auth/README.md b/charts/kubezero-auth/README.md index 5843584b..d15f488d 100644 --- a/charts/kubezero-auth/README.md +++ b/charts/kubezero-auth/README.md @@ -1,6 +1,6 @@ # kubezero-auth -![Version: 0.4.6](https://img.shields.io/badge/Version-0.4.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 22.0.5](https://img.shields.io/badge/AppVersion-22.0.5-informational?style=flat-square) +![Version: 0.5.0](https://img.shields.io/badge/Version-0.5.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 22.0.5](https://img.shields.io/badge/AppVersion-22.0.5-informational?style=flat-square) KubeZero umbrella chart for all things Authentication and Identity management @@ -19,7 +19,7 @@ Kubernetes: `>= 1.26.0` | Repository | Name | Version | |------------|------|---------| | https://cdn.zero-downtime.net/charts/ | kubezero-lib | >= 0.1.6 | -| oci://registry-1.docker.io/bitnamicharts | keycloak | 18.7.1 | +| oci://registry-1.docker.io/bitnamicharts | keycloak | 22.1.1 | # Keycloak @@ -41,6 +41,7 @@ https://github.com/keycloak/keycloak-benchmark/tree/main/provision/minikube/keyc | keycloak.auth.existingSecret | string | `"kubezero-auth"` | | | keycloak.auth.passwordSecretKey | string | `"admin-password"` | | | keycloak.enabled | bool | `false` | | +| keycloak.hostnameStrict | bool | `true` | | | keycloak.istio.admin.enabled | bool | `false` | | | keycloak.istio.admin.gateway | string | `"istio-ingress/private-ingressgateway"` | | | keycloak.istio.admin.url | string | `""` | | @@ -57,7 +58,5 @@ https://github.com/keycloak/keycloak-benchmark/tree/main/provision/minikube/keyc | keycloak.postgresql.primary.persistence.size | string | `"1Gi"` | | | keycloak.postgresql.readReplicas.replicaCount | int | `0` | | | keycloak.production | bool | `true` | | -| keycloak.proxy | string | `"edge"` | | +| keycloak.proxyHeaders | string | `"xforwarded"` | | | keycloak.replicaCount | int | `1` | | -| keycloak.resources.requests.cpu | string | `"100m"` | | -| keycloak.resources.requests.memory | string | `"512Mi"` | | diff --git a/charts/kubezero-auth/values.yaml b/charts/kubezero-auth/values.yaml index 807bc831..8451753f 100644 --- a/charts/kubezero-auth/values.yaml +++ b/charts/kubezero-auth/values.yaml @@ -1,8 +1,9 @@ keycloak: enabled: false - proxy: edge production: true + hostnameStrict: true + proxyHeaders: xforwarded auth: adminUser: admin @@ -15,14 +16,18 @@ keycloak: create: false minAvailable: 1 + resources: + limits: + #cpu: 750m + memory: 768Mi + requests: + cpu: 100m + memory: 512Mi + metrics: enabled: false serviceMonitor: enabled: true - resources: - requests: - cpu: 100m - memory: 512Mi postgresql: auth: