cd
/
k8s-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update keycloak version. Modify deployment so postgres retarts gracefully.

This commit is contained in:
James Pace 2024-01-28 10:59:43 -05:00
parent 376fa2a5f4
commit 09d070d98d
2 changed files with 9 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
infra-cluster/keycloak/images/Dockerfile
View File

@ -1,5 +1,4 @@
FROM quay.io/keycloak/keycloak:20.0 FROM quay.io/keycloak/keycloak:23.0
WORKDIR /opt/keycloak WORKDIR /opt/keycloak
RUN ./bin/kc.sh build \ RUN ./bin/kc.sh build \
--spi-x509cert-lookup-provider=nginx \ --spi-x509cert-lookup-provider=nginx
--features docker

9
infra-cluster/keycloak/manifests/deployment.yaml
View File

@ -8,6 +8,8 @@ metadata:
app: keycloak app: keycloak
spec: spec:
replicas: 1 replicas: 1
strategy:
type: Recreate
selector: selector:
matchLabels: matchLabels:
app: keycloak app: keycloak
@ -30,8 +32,12 @@ spec:
secretKeyRef: secretKeyRef:
name: keycloak-db-secret name: keycloak-db-secret
key: POSTGRES_PASSWORD key: POSTGRES_PASSWORD
lifecycle:
preStop:
exec:
command: ["/usr/local/bin/pg_ctl stop -D /var/lib/postgresql/data -w -t 60 -m fast"]
- name: keycloak - name: keycloak
image: harbor.internal.jpace121.net/k8s/jpace-keycloak:20.0.0 image: harbor.internal.jpace121.net/k8s/jpace-keycloak:23.0.0
env: env:
- name: KC_LOG_LEVEL - name: KC_LOG_LEVEL
value: DEBUG value: DEBUG
@ -64,7 +70,6 @@ spec:
- --spi-truststore-file-password=password - --spi-truststore-file-password=password
- --spi-x509cert-lookup-nginx-ssl-client-cert=ssl-client-cert - --spi-x509cert-lookup-nginx-ssl-client-cert=ssl-client-cert
- --spi-x509cert-lookup-provider=nginx - --spi-x509cert-lookup-provider=nginx
- --features docker
- --proxy=edge - --proxy=edge
volumes: volumes:
- name: db-storage - name: db-storage