-
Notifications
You must be signed in to change notification settings - Fork 0
/
dso-values.yaml
141 lines (135 loc) · 3.41 KB
/
dso-values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
global:
env:
NODE_ENV: production
keycloak:
domain: keycloak.dso.local
realm: cloud-pi-native
protocol: http
clientIds:
frontend: dso-console-frontend
backend: console-backend
clientSecretBackend: client-secret-backend
redirectUri: http://console.dso.local
sessionSecrets:
backend: a-very-strong-secret-with-more-than-32-char
config:
create: true
projectsRootDir: forge-mi/projects
secrets:
ARGOCD_URL: "https://argo-cd.readthedocs.io"
GITLAB_URL: "https://gitlab.com"
HARBOR_URL: "https://goharbor.io"
KEYCLOAK_URL: "https://www.keycloak.org"
NEXUS_URL: "https://sonatype.com/products/nexus-repository"
SONARQUBE_URL: "https://www.sonarqube.org"
VAULT_URL: "https://www.vaultproject.io"
ingress:
enabled: true
className: traefik
hosts:
- console.dso.local
tls: []
server:
image:
repository: dso-console/server
tag: prod
pullPolicy: Never
initContainers:
- name: wait-for-keycloak
image: docker.io/wbitt/network-multitool:alpine-minimal
command:
- /bin/sh
- -c
args:
- "while [ $(curl -sw '%{http_code}' http://$KEYCLOAK_DOMAIN -o /dev/null) -ne 200 ]; do sleep 3; echo 'Waiting for keycloak...'; done"
env:
- name: KEYCLOAK_DOMAIN
value: dso-cpn-keycloak
dbDataCm: db-data-cm
env:
CI: "true"
DEV_SETUP: "true"
KEYCLOAK_DOMAIN: dso-cpn-keycloak
client:
image:
repository: dso-console/client
tag: prod
pullPolicy: Never
env:
CI: "true"
postgresql:
enabled: true
architecture: standalone
auth:
postgresPassword: admin
username: admin
password: admin
database: dso-console-db
primary:
persistence:
size: 1Gi
keycloak:
enabled: true
auth:
adminUser: admin
adminPassword: admin
ingress:
enabled: true
hostname: keycloak.dso.local
tls: false
production: false
tls:
enabled: false
autoGenerated: false
command:
- /opt/bitnami/keycloak/bin/kc.sh
args:
- start-dev
- --import-realm
extraVolumes:
- name: realm-dev
configMap:
name: keycloak-realm
- name: extensions
emptyDir: {}
extraVolumeMounts:
- mountPath: /opt/bitnami/keycloak/data/import/realm-dev.json
subPath: realm-dev.json
name: realm-dev
- mountPath: /opt/bitnami/keycloak/providers
name: extensions
postgresql:
enabled: true
architecture: standalone
auth:
postgresPassword: admin
username: admin
password: admin
database: keycloak
primary:
persistence:
size: 1Gi
extraEnvVars:
- name: DSFR_THEME_HOME_URL
value: http://console.dso.local
- name: DSFR_THEME_SERVICE_TITLE
value: Cloud π Native
- name: DSFR_THEME_BRAND_TOP
value: "Ministère<br/>de l'intérieur<br/>et des outre-mer"
- name: DSFR_THEME_CONTACT_EMAIL
value: [email protected]
- name: JAVA_OPTS
value: >-
-Dkeycloak.profile=preview
initContainers:
- name: realm-ext-provider
image: docker.io/curlimages/curl:8.8.0
imagePullPolicy: IfNotPresent
command:
- sh
args:
- -c
- curl -LfS -o /extensions/keycloak-theme-dsfr.jar https://github.com/codegouvfr/keycloak-theme-dsfr/releases/download/v1.0.3/retrocompat-keycloak-theme.jar
volumeMounts:
- name: extensions
mountPath: /extensions