update realm

2026-06-10 22:16:36 +02:00
parent 7461ddc6a4
commit 05c56b3f9e
2 changed files with 60 additions and 58 deletions
@@ -1,29 +1,30 @@
-hostAliases:
+hostAliases:
- ip: "13.140.150.2"
+- ip: "13.140.150.2"
-  hostnames:
+  hostnames:
-    - "keycloak.13.140.150.2.nip.io"
+    - "keycloak.13.140.150.2.nip.io"
-
+
-config:
+config:
-  existingSecret: oauth2-proxy-alertmanager
+  existingSecret: oauth2-proxy-alertmanager
-  cookie_secure: false
+  cookie_secure: false
-  reverse_proxy: true
+  reverse_proxy: true
-  set_xauthrequest: true
+  set_xauthrequest: true
-  cookie_samesite: "lax"
+  cookie_samesite: "lax"
-  redirect_url: http://alertmanager.13.140.150.2.nip.io/oauth2/callback
+  redirect_url: http://alertmanager.13.140.150.2.nip.io/oauth2/callback
-
+
-extraArgs:
+extraArgs:
-  provider: oidc
+  provider: oidc
-  oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps"
+  oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps"
-  email-domain: "*"
+  login-url: "http://keycloak.13.140.150.2.nip.io/auth/realms/k8s-apps/protocol/openid-connect/auth"
-  insecure-oidc-allow-unverified-email: "true"
+  redeem-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/token"
-  upstream: "http://monitoring-kube-prometheus-alertmanager.monitoring.svc.cluster.local:9093"
+  oidc-jwks-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/certs"
-
+  email-domain: "*"
-ingress:
+  insecure-oidc-allow-unverified-email: "true"
-  enabled: true
+  upstream: "http://monitoring-kube-prometheus-alertmanager.monitoring.svc.cluster.local:9093"
-  className: nginx
+
-
+ingress:
-  hosts:
+  enabled: true
-    - alertmanager.13.140.150.2.nip.io
+  className: nginx
-
+  hosts:
-  path: /
+    - alertmanager.13.140.150.2.nip.io
-  pathType: Prefix
+  path: /
  pathType: Prefix
@@ -1,29 +1,30 @@
-hostAliases:
+hostAliases:
- ip: "13.140.150.2"
+- ip: "13.140.150.2"
-  hostnames:
+  hostnames:
-    - "keycloak.13.140.150.2.nip.io"
+    - "keycloak.13.140.150.2.nip.io"
-
+
-config:
+config:
-  existingSecret: oauth2-proxy-prometheus
+  existingSecret: oauth2-proxy-prometheus
-  cookie_secure: false
+  cookie_secure: false
-  reverse_proxy: true
+  reverse_proxy: true
-  set_xauthrequest: true
+  set_xauthrequest: true
-  cookie_samesite: "lax"
+  cookie_samesite: "lax"
-  redirect_url: http://prometheus.13.140.150.2.nip.io/oauth2/callback
+  redirect_url: http://prometheus.13.140.150.2.nip.io/oauth2/callback
-
+
-extraArgs:
+extraArgs:
-  provider: oidc
+  provider: oidc
-  oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps"
+  oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps"
-  email-domain: "*"
+  login-url: "http://keycloak.13.140.150.2.nip.io/auth/realms/k8s-apps/protocol/openid-connect/auth"
-  insecure-oidc-allow-unverified-email: "true"
+  redeem-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/token"
-  upstream: "http://monitoring-kube-prometheus-prometheus.monitoring.svc.cluster.local:9090"
+  oidc-jwks-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/certs"
-
+  email-domain: "*"
-ingress:
+  insecure-oidc-allow-unverified-email: "true"
-  enabled: true
+  upstream: "http://monitoring-kube-prometheus-prometheus.monitoring.svc.cluster.local:9090"
-  className: nginx
+
-
+ingress:
-  hosts:
+  enabled: true
-    - prometheus.13.140.150.2.nip.io
+  className: nginx
-
+  hosts:
-  path: /
+    - prometheus.13.140.150.2.nip.io
-  pathType: Prefix
+  path: /
  pathType: Prefix