From 686e918ed3e2486722675e57968a40ee5b040e00 Mon Sep 17 00:00:00 2001 From: mbelfares Date: Wed, 10 Jun 2026 22:23:24 +0200 Subject: [PATCH] update realm --- helm/monitoring/oauth2-proxy-alertmanager.yaml | 3 ++- helm/monitoring/oauth2-proxy-prometheus.yaml | 3 ++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/helm/monitoring/oauth2-proxy-alertmanager.yaml b/helm/monitoring/oauth2-proxy-alertmanager.yaml index 1f41408..8222f15 100644 --- a/helm/monitoring/oauth2-proxy-alertmanager.yaml +++ b/helm/monitoring/oauth2-proxy-alertmanager.yaml @@ -13,9 +13,10 @@ config: extraArgs: provider: oidc - oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps" + skip-oidc-discovery: "true" login-url: "http://keycloak.13.140.150.2.nip.io/auth/realms/k8s-apps/protocol/openid-connect/auth" redeem-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/token" + oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps" oidc-jwks-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/certs" email-domain: "*" insecure-oidc-allow-unverified-email: "true" diff --git a/helm/monitoring/oauth2-proxy-prometheus.yaml b/helm/monitoring/oauth2-proxy-prometheus.yaml index b476a62..eac802a 100644 --- a/helm/monitoring/oauth2-proxy-prometheus.yaml +++ b/helm/monitoring/oauth2-proxy-prometheus.yaml @@ -13,9 +13,10 @@ config: extraArgs: provider: oidc - oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps" + skip-oidc-discovery: "true" login-url: "http://keycloak.13.140.150.2.nip.io/auth/realms/k8s-apps/protocol/openid-connect/auth" redeem-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/token" + oidc-issuer-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps" oidc-jwks-url: "http://keycloak-keycloakx-http.keycloak.svc.cluster.local/auth/realms/k8s-apps/protocol/openid-connect/certs" email-domain: "*" insecure-oidc-allow-unverified-email: "true"