namespace: keycloak-dev

image:
  repository: quay.io/keycloak/keycloak
  tag: legacy
  pullPolicy: Always

service:
  type: ClusterIP
  port: 8080
  targetPort: 8080

replicaCount: 1

ingress:
  enabled: true
  annotations:
    nginx.ingress.kubernetes.io/proxy-body-size: "51m"
    kubernetes.io/ingress.class: nginx
    cert-manager.io/cluster-issuer: letsencrypt-prod
    cert-manager.io/issue-temporary-certificate: "true"
    acme.cert-manager.io/http01-edit-in-place: "true"
    ingress.kubernetes.io/ssl-redirect: "true"
  tlsEnabled: true  # New parameter to control TLS
  hosts:
    - host: sso.dev.essocode.ru
      paths:
        - path: /
          pathType: ImplementationSpecific
  tls:
    - secretName: keycloak-tls
      hosts:
        - sso.dev.essocode.ru

secret:
  enabled: true
  name: keycloak-back-cred
  data:
    KEYCLOAK_FRONTEND_URL: aHR0cHM6Ly9zc28uZGV2LmVzc29jb2RlLnJ1L2F1dGg=
    TZ: RXVyb3BlL01vc2Nvdw==
    DB_VENDOR: UE9TVEdSRVM=
    DB_ADDR: MTkyLjE2OC4xNy4x
    DB_PORT: NTQzMg==
    DB_DATABASE: a2V5Y2xvYWtfZGI=
    DB_USER: a2V5Y2xvYWs=
    DB_PASSWORD: a2V5Y2xvYWs=
    KEYCLOAK_USER: YWRtaW4=
    KEYCLOAK_PASSWORD: YWRtaW5fcGFzc3dvcmQ=
    KEYCLOAK_PORT: ODA4MA==
    KEYCLOAK_HOST: bG9jYWxob3N0
    KC_HOSTNAME: c3NvLmRldi5lc3NvY29kZS5ydQ==
    KC_HOSTNAME_ADMIN_URL: aHR0cHM6Ly9zc28uZGV2LmVzc29jb2RlLnJ1L2F1dGgvYWRtaW4=
    KC_HOSTNAME_URL: aHR0cHM6Ly9zc28uZGV2LmVzc29jb2RlLnJ1L2F1dGg=
    KC_PROXY: ZWRnZQ==

env:
  TZ: TZ
  DB_VENDOR: DB_VENDOR
  DB_ADDR: DB_ADDR
  DB_PORT: DB_PORT
  DB_DATABASE: DB_DATABASE
  DB_USER: DB_USER
  DB_PASSWORD: DB_PASSWORD
  KEYCLOAK_USER: KEYCLOAK_USER
  KEYCLOAK_PASSWORD: KEYCLOAK_PASSWORD
  KEYCLOAK_PORT: KEYCLOAK_PORT
  KEYCLOAK_HOST: KEYCLOAK_HOST
  KEYCLOAK_FRONTEND_URL: KEYCLOAK_FRONTEND_URL
  KC_HOSTNAME: KC_HOSTNAME
  KC_HOSTNAME_URL: KC_HOSTNAME_URL
  KC_HOSTNAME_ADMIN_URL: KC_HOSTNAME_ADMIN_URL
  KC_PROXY: KC_PROXY

appName: keycloak

imagePullSecrets:
  - registrypullsecret

resources: {}