Added provider and invoker
Change-Id: I443b8b11a2304621109a9729473e05af8461f4f0
diff --git a/rapps/keycloak.yaml b/rapps/keycloak.yaml
new file mode 100644
index 0000000..44aa3a7
--- /dev/null
+++ b/rapps/keycloak.yaml
@@ -0,0 +1,133 @@
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+ name: keycloak-certs-pv-volume
+ namespace: default
+ labels:
+ type: local
+ app: keycloak
+spec:
+ storageClassName: manual
+ capacity:
+ storage: 100Mi
+ accessModes:
+ - ReadWriteOnce
+ hostPath:
+ path: "/var/keycloak/certs"
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+ name: keycloak-certs-pv-claim
+ namespace: default
+ labels:
+ app: keycloak
+spec:
+ storageClassName: manual
+ accessModes:
+ - ReadWriteOnce
+ resources:
+ requests:
+ storage: 100Mi
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+ name: keycloak
+ namespace: default
+---
+apiVersion: v1
+kind: Service
+metadata:
+ name: keycloak
+ labels:
+ app: keycloak
+spec:
+ type: ExternalName
+ externalName: keycloak.local
+ ports:
+ - name: http
+ port: 8080
+ targetPort: 8080
+ nodePort: 31560
+ - name: https
+ port: 8443
+ targetPort: 8443
+ nodePort: 31561
+ selector:
+ app: keycloak
+ type: LoadBalancer
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+ name: keycloak
+ namespace: default
+ labels:
+ app: keycloak
+spec:
+ replicas: 1
+ selector:
+ matchLabels:
+ app: keycloak
+ template:
+ metadata:
+ labels:
+ app: keycloak
+ spec:
+ initContainers:
+ - name: init-postgres
+ image: busybox
+ imagePullPolicy: IfNotPresent
+ command: ['sh', '-c', 'until nc -vz postgres 5432; do echo waiting for postgres db; sleep 2; done;']
+ serviceAccountName: keycloak
+ containers:
+ - name: keycloak
+ image: quay.io/keycloak/keycloak:latest
+ imagePullPolicy: IfNotPresent
+ env:
+ - name: KEYCLOAK_USER
+ value: "admin"
+ - name: KEYCLOAK_PASSWORD
+ value: "admin"
+ - name: KEYCLOAK_HTTPS_PORT
+ value: "8443"
+ - name: PROXY_ADDRESS_FORWARDING
+ value: "true"
+ - name: MANAGEMENT_USER
+ value: "wildfly-admin"
+ - name: MANAGEMENT_PASSWORD
+ value: "secret"
+ - name: INGRESS_ENABLED
+ value: "false"
+ - name: DB_VENDOR
+ value: "postgres"
+ - name: DB_ADDR
+ value: "postgres"
+ - name: DB_PORT
+ value: "5432"
+ - name: DB_DATABASE
+ value: "keycloak"
+ - name: DB_USER
+ value: "keycloak"
+ - name : DB_PASSWORD
+ value: "keycloak"
+ - name : X509_CA_BUNDLE
+ value: /etc/x509/https/rootCA.crt
+ ports:
+ - name: http
+ containerPort: 8080
+ - name: https
+ containerPort: 8443
+ readinessProbe:
+ httpGet:
+ path: /auth/realms/master
+ port: 8080
+ volumeMounts:
+ - name: keycloak-certs
+ mountPath: /etc/x509/https
+ volumes:
+ - name: keycloak-certs
+ persistentVolumeClaim:
+ claimName: keycloak-certs-pv-claim
+---