UNIX.dog
/
keycloak
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
21,676 Commits 1 Branch 0 Tags 434 MiB
Commit Graph

93 Commits

Author SHA1 Message Date
Jon Koops 972ebb9650
Use a valid SemVer format for the SNAPSHOT version (#17334) 
* Use a valid SemVer format for the SNAPSHOT version

* Update pom.xml

* Update pom.xml

---------

Co-authored-by: Stian Thorgersen <stianst@gmail.com>
Co-authored-by: Stian Thorgersen <stian@redhat.com>
 2023-03-03 11:11:44 +01:00
Andre Nascimento aa422484e2 Improvements on Operator Integration Tests to make sure that Config set in CR takes precedence. 
Closes #13114
 2023-02-23 08:51:40 +01:00
Andre Nascimento cb78ea06b0 Make sure the customized Ingress resource isn't deleted when the Keycloak deployed by Operator is killed. 
Closes #14433
 2023-02-16 17:31:31 +01:00
Václav Muzikář 2089878740 Update Operator container to UBI 9 / RHEL 9 
Closes #17068
 2023-02-15 16:26:29 -03:00
Alex Szczuczko 610e3044ad Minimize the RPM content of the Quarkus container 
Even though we use `ubi8-minimal` as the parent of our container, it
still has many RPMs installed that aren't necessary to run the Keycloak
server. Also, since the JDK RPM (that we install on top of
`ubi8-minimal`) is designed for general use, it pulls in more dependency
RPMs than it strictly needs to, like cups and avahi. Keycloak will never
need to access a printer itself!

Trimming down these excess RPMs will improve our CVE statistics with
automated scanners, and therefore let us perform fewer CVE rebuilds.

`ubi8-null.sh` uses the low-level `rpm` command to identify and forcibly
remove dependencies and operating system files that are not required to
boot our Quarkus-based server. This includes `microdnf` and `rpm`
itself! I have preserved bash however, so it's still possible to debug
the container from a shell.

I've created an initial set of allow/disallow lists, that seems to pass
a smoke test (server boots, admin console works). This leaves 37
packages installed, with 96 removed relative to `ubi8-minimal`. We could
go more minimal than this, or less minimal if required. Trial and error
is required.

Closes #16902
 2023-02-09 11:20:09 +01:00
Michael Edgar 9896efd288 Operator: use TLS Edge termination when back-end protocol is HTTP 
Fixes #16807

Signed-off-by: Michael Edgar <michael@xlate.io>
Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
 2023-02-08 16:07:43 +01:00
Bruno Oliveira da Silva 12cefb9950 Update to Quarkus 2.13.7.Final 
Resolves #16755

Co-authored-by: Robert Nemeti <r.nemeti@syseleven.de>
 2023-02-03 15:03:11 -03:00
Martin Bartoš eebbeb26bc Remove invalid property from Operator properties 
Closes #16373
 2023-01-30 08:59:49 +01:00
Václav Muzikář 3d62dc4254 Update SDK to 4.0.6 2023-01-11 13:58:45 +01:00
Václav Muzikář 01f1db600d Fix race condition while updating Secrets labels in Operator 2022-11-07 13:07:02 +01:00
Peter Becich 13aaadc754
improvement to `operator` readme, links to documentation (#14692) 
* operator readme links to documentation

* Update operator/README.md

Co-authored-by: Stian Thorgersen <stian@redhat.com>
 2022-11-03 07:20:43 +01:00
Václav Muzikář 5ebb6e9c10 Mark Operator as stable in the OLM bundle 2022-10-24 08:08:24 +02:00
Václav Muzikář a30b427a96 Update Quarkus Operator SDK to 4.0.4 2022-10-21 15:58:31 -03:00
Andre Nascimento RH d12aef0b43
Rename free-form field from 'serverConfiguration' to 'additionalOptions' in Keycloak CR. 2022-10-21 14:41:02 +02:00
Martin Bartoš 24acc4c7d1 Add hostname options to Keycloak CR 
Closes #14395

Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>
 2022-10-21 11:00:42 +02:00
Pedro Igor 2d55e1dab7 Add DB options to Keycloak CR 
Closes #14374

Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2022-10-20 21:21:00 +02:00
Peter Zaoral 4dfbb42680 Refine Ingress settings in Keycloak CR 
Closes Keycloak#14407

Signed-off-by: Peter Zaoral <pzaoral@redhat.com>
 2022-10-18 17:44:50 +02:00
Václav Muzikář 19ee00ff54 Add HTTP options to Keycloak CR 2022-10-17 15:57:05 -03:00
Bruno Oliveira da Silva 90369f7540
Upgrade to latest Quarkus 2.13.2 (#14834) 
Upgrade to latest Quarkus 2.13.2

Resolves #14817
 2022-10-17 12:05:35 +02:00
Václav Muzikář 0afc4a8af7
Refactor `KeycloakDeploymentConfig` (#14880) 
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
 2022-10-14 10:42:09 -03:00
Martin Bartoš 90c1624668 Add transaction options to Keycloak CR 
Closes #14375
 2022-10-13 08:41:47 +02:00
Martin Bartoš 7311e12066 Add features options to Keycloak CR 
Closes #14376
 2022-10-11 15:07:44 +02:00
Václav Muzikář 20fa75f677 Upgrade Operator SDK version 2022-09-29 10:28:47 +02:00
Dmitry Telegin cc2117bf7c UserInfo endpoint not fully standards compliant 
Closes #14184
 2022-09-16 10:15:08 +02:00
Andre Nascimento RH 4594243a33
Add 'imagePullSecret' field to the Keycloak CR 2022-09-07 14:03:28 +02:00
mposolda 0796e7a479 Revert removing bouncycastle from operator 
Closes #13952
 2022-08-24 14:29:42 +02:00
David Anderson 2070420673
Remove the BC dependency from keycloak-operator (#13928) 
Closes #13115
 2022-08-23 10:21:00 +02:00
Stian Thorgersen ae33af92d9
Promote new admin console to default (#13243) 
Closes #13242
 2022-07-27 10:13:49 +02:00
Václav Muzikář 4e83b9be9d
`Recreate` upgrade strategy using the new Operator (#13326) 
Co-authored-by: Dominik Guhr <dguhr@redhat.com>
 2022-07-26 13:37:20 -03:00
Dominik Guhr 9bb1299d89 change optimised to optimized 
also: fix kc.bat to not use autobuild in devmode anymore, fix containers.adoc to not use auto_build naming, fix build command cli help as it is not required anymore to run it beforehand.
 2022-07-22 10:29:07 -03:00
Václav Muzikář 15a04021e0 Operator doesn't reconcile annotations specified in pod template 2022-07-20 10:08:57 -03:00
David Anderson 8ce10df6da
Extract BC from keycloak-common (#13064) 
Closes #12855
 2022-07-16 09:36:07 +02:00
Pedro Igor 89028613d8 Introducing --optimise option 
Closes #10737
 2022-07-15 15:12:17 -03:00
Andrea Peruffo f2d71cd1c7
Switch to StatefulSet (#12757) 2022-07-13 11:58:06 -03:00
andreaTP 006aea300d A better structure for config-api 2022-06-28 11:33:44 -03:00
andreaTP 6812bad2ae Review RollingUpdate settings 2022-06-20 17:41:59 -03:00
andreaTP 3abcc699a1 Move all dist options to the new module 
Co-authored-by: Pedro Igor <pigor.craveiro@gmail.com>
 2022-06-17 09:06:40 -03:00
Václav Muzikář 105d3b955b Refactor Operator test packages 2022-06-13 10:01:43 -03:00
Dominik Guhr b5c8f92fe7
Update Quarkus to 2.7.6.Final (#12371) 
Resolves #12370
 2022-06-10 09:14:59 -03:00
Andrea Peruffo e955a7c9c5
Remove the external base-deployment.yaml file (#12437) 
Resolves #12436
 2022-06-09 13:45:25 -03:00
Tobias Florek fa22f1bdc7 ingress: set annotation for openshift routes 
fixes #12182
 2022-06-09 13:44:26 -03:00
andreaTP a40acd413a Fix Ingress creation/deletion loop 2022-06-09 13:26:48 -03:00
Dominik Guhr c4001ba198 Fix running operator image tests with prebuilt image 
Closes #9898

Co-authored-by: Andrea Peruffo <andrea.peruffo1982@gmail.com>
 2022-06-09 09:55:26 -03:00
andreaTP f9c6ea84ad Respect `http-relative-path` with probes 2022-06-03 12:23:36 -03:00
andreaTP 0a8e132c7c Refactor the packages structure of the operator 2022-06-01 17:30:47 -03:00
andreaTP 8912b6dc96 Improve Operator CI robustness 2022-05-31 08:52:40 -03:00
andreaTP 7c7588e8db Make OLM tests Maven build self-contained 2022-05-30 15:23:11 -03:00
andreaTP d66710205c Refactor dist config to a common module 2022-05-26 12:07:03 -03:00
andreaTP 8882c09901 Fix operator watching an alternative namespace 2022-05-19 12:43:43 -03:00
andreaTP 2747729fbb Review http/https and proxy settings in operator 
Co-authored-by: Dominik Guhr <dguhr@redhat.com>
 2022-05-19 09:38:42 -03:00