Keycloak - Identity and Access Management
MijnBureau supplies an installation of KeyCloak. Keycloak is an Identity and Access Management system.
Configuration
To configure this solution, you can override the default settings for your environment. The defaults are
located in the folder helmfile/environments/default.
| Name | Description |
|---|---|
global.domain | The domain name of your MijnBureau instance |
global.hostname.keycloak | The subdomain name |
application.keycloak.enabled | Enable keycloak |
application.keycloak.namespace | The Kubernetes namespace name |
secrets.keycloak.* | Secrets for keycloak |
tls.keycloak.* | The TLS settings |
authentication.client.* | The keycloak clients created |
authentication.oidc.* | The MijnBureau OIDC settings |
autoscaling.horizontal.keycloak.* | Scaling settings |
chart.keycloak.* | Chart settings to overwrite the charts |
container.keycloak.* | Container settings to overwrite |
database.keycloak.* | Database configuration |
pvc.keycloak.* | Storage configuration |
resources.keycloak.* | Resource configuration |
user.* | Created users. Used in demo environment only |
The database and object store are automaticly created when running in demo environment. For production environment you need to supply it.
Your own Identity provider
If you do not want to deploy keycloak but use your own disabled the application at application.keycloak.enabled and configure your own compatible OIDC provider in authentication.oidc.*