sheppy/opendesk
1
0
Fork 0
mirror of https://gitlab.opencode.de/bmi/opendesk/deployment/opendesk.git synced 2025-12-06 15:31:38 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: update keycloak-bootstrap

Browse Source
This commit is contained in:
Andreas Niemann
2024-05-09 12:59:03 +02:00
parent d82d9e7e24
commit 1c8fb171d2
3 changed files with 40 additions and 46 deletions
Download Patch File Download Diff File Expand all files Collapse all files

60
helmfile/apps/univention-management-stack/values-umbrella.yaml.gotmpl
View File

@@ -1053,38 +1053,44 @@ keycloak-bootstrap:
deletePodsOnSuccess: {{ .Values.cleanup.deletePodsOnSuccess }} deletePodsOnSuccess: {{ .Values.cleanup.deletePodsOnSuccess }}
keepPVCOnDelete: {{ .Values.cleanup.keepPVCOnDelete }} keepPVCOnDelete: {{ .Values.cleanup.keepPVCOnDelete }}
config: keycloak:
keycloak: connection:
adminUser: "kcadmin" baseUrl: "http://ums-keycloak.{{ .Release.Namespace }}.svc.{{ .Values.cluster.networking.domain }}:8080"
adminPassword: {{ .Values.secrets.keycloak.adminPassword | quote }} auth:
username: "kcadmin"
password: {{ .Values.secrets.keycloak.adminPassword | quote }}
realm: {{ .Values.platform.realm | quote }} realm: {{ .Values.platform.realm | quote }}
intraCluster: ldap:
enabled: true baseDn: {{ .Values.ldap.baseDn | quote }}
internalBaseUrl: "http://ums-keycloak.{{ .Release.Namespace }}.svc.{{ .Values.cluster.networking.domain }}:8080" connection:
loginLinks: host: {{ .Values.ldap.host | quote }}
- link_number: 1 port: "389"
language: "de" protocol: "ldap"
description: "Passwort vergessen?" auth:
href: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/portal/#/selfservice/passwordforgotten" bindDn: "uid=ldapsearch_keycloak,cn=users,dc=swp-ldap,dc=internal"
- link_number: 1 password: {{ .Values.secrets.univentionManagementStack.ldapSearch.keycloak | quote }}
language: "en"
description: "Forgot password?" bootstrap:
href: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/portal/#/selfservice/passwordforgotten" ldapMappers:
ums: - ldapAndUserModelAttributeName: "opendeskProjectmanagementAdmin"
ldap: - ldapAndUserModelAttributeName: "oxContextIDNum"
internalHostname: {{ .Values.ldap.host | quote }} loginLinks:
baseDN: {{ .Values.ldap.baseDn | quote }} - link_number: 1
readUserDN: "uid=ldapsearch_keycloak,cn=users,dc=swp-ldap,dc=internal" language: "de"
readUserPassword: {{ .Values.secrets.univentionManagementStack.ldapSearch.keycloak | quote }} description: "Passwort vergessen?"
mappers: href: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/portal/#/selfservice/passwordforgotten"
- ldapAndUserModelAttributeName: "opendeskProjectmanagementAdmin" - link_number: 1
- ldapAndUserModelAttributeName: "oxContextIDNum" language: "en"
saml: description: "Forgot password?"
serviceProviderHostname: "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}" href: "https://{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}/univention/portal/#/selfservice/passwordforgotten"
twoFactorAuthentication: twoFactorAuthentication:
enabled: true enabled: true
group: "2fa-users" group: "2fa-users"
config:
saml:
serviceProviderHostname: "{{ .Values.global.hosts.univentionManagementStack }}.{{ .Values.global.domain }}"
containerSecurityContext: containerSecurityContext:
enabled: true enabled: true
allowPrivilegeEscalation: false allowPrivilegeEscalation: false

14
helmfile/environments/default/charts.yaml
View File

@@ -378,19 +378,7 @@ charts:
registry: "registry.opencode.de" registry: "registry.opencode.de"
repository: "bmi/opendesk/components/supplier/univention/charts-mirror" repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
name: "ums" name: "ums"
version: "0.12.0" version: "0.13.0"
verify: true
umsKeycloakBootstrap:
# providerCategory: 'Supplier'
# providerResponsible: 'Univention'
# upstreamRegistry: 'registry.souvap-univention.de'
# upstreamRepository: 'souvap/tooling/charts/univention-keycloak-bootstrap/ums-keycloak-bootstrap'
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
# upstreamMirrorStartFrom: ['1', '0', '1']
registry: "registry.opencode.de"
repository: "bmi/opendesk/components/supplier/univention/charts-mirror"
name: "ums-keycloak-bootstrap"
version: "1.0.1"
verify: true verify: true
xwiki: xwiki:
# providerCategory: 'Supplier' # providerCategory: 'Supplier'

12
helmfile/environments/default/images.yaml
View File

@@ -540,13 +540,13 @@ images:
umsKeycloakBootstrap: umsKeycloakBootstrap:
# providerCategory: 'Supplier' # providerCategory: 'Supplier'
# providerResponsible: 'Univention' # providerResponsible: 'Univention'
# upstreamRegistry: 'registry.souvap-univention.de' # upstreamRegistry: 'artifacts.software-univention.de'
# upstreamRepository: 'souvap/tooling/images/univention-keycloak-bootstrap' # upstreamRepository: 'nubus/images/keycloak-bootstrap'
# upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$' # upstreamMirrorTagFilterRegEx: '^(\d+)\.(\d+)\.(\d+)$'
# upstreamMirrorStartFrom: ['1', '0', '5'] # upstreamMirrorStartFrom: ['0', '1', '0']
registry: "registry.opencode.de" registry: "artifacts.software-univention.de"
repository: "bmi/opendesk/components/supplier/univention/images-mirror/univention-keycloak-bootstrap" repository: "nubus-dev/images/keycloak-bootstrap"
tag: "1.0.8@sha256:fef48cb1b2552977e8a4253516249b59ef6c42189dd13cd6d98269b8988b362a" tag: "0.1.0-pre-feat-cleanup-redundant-values@sha256:3fd138b07f21979757eb4a6962e77ca734e15754e53f69df988607d0aa0947fa"
umsKeycloakExtensionHandler: umsKeycloakExtensionHandler:
# providerCategory: 'Supplier' # providerCategory: 'Supplier'
# providerResponsible: 'Univention' # providerResponsible: 'Univention'