Aller au contenu principal

Install

Helmfile/Helm​

Add the following in your helmfile.yaml.gotmpl or use helm directly with the same parameters.

info

This exemple is made with rancher but should be adapted for each import you want to make

Keycloak Importer​

  # Create rancher client in iam
  - name: keycloakimporter-rancher
    namespace: cattle-system
    needs:
      - kosmos-iam/keycloakimporter-init-realm-kosmos
      - cattle-system/rancher-secrets
    chart: ../../keycloakimporter/keycloakimporter
    labels:
      app: rancher
      keycloakimporter: true
    values:
      - ./values_templates/rancher/import-client-rancher.yaml.gotmpl

Run:

helmfile sync -f helmfile.yaml.gotmpl -l name=keycloakimporter-rancher
info

This exemple is made with rancher but should be adapted for each import you want to make

Configuration​

The configuration can be tweaked with the following keys :

  • podAnnotations : Additional annotations to set on the pods.
  • podLabels : Additional labels to set on the pods.
  • config :
    • keycloak : this is a yaml file which configure the general behaviour of the keycloak importer. An exemple below provide more information about each configuration key.
    • import : this is a json file which contains all the resources, users and realm configuration (only at creation) you wish to import.

Exemple Configuration​

## Default value are that of a default keycloak installation
# keycloak client-id that has access to the /realms/* endpoint
clientId: admin-cli
# Credentials of the user you wish to use for the import
username: <user>
password: <password>
# kind of grant to use to authenticate with keycloak. Only password is currently supported.
grantType: password
# Keycloak URL
baseUrl: https://auth.kosmos.athea
# Whether to skip certificate verification when querying keycloak in https
skipCertCheck: true
# whether to create the realm if it is missing
createRealm: false