|
33 | 33 | }, |
34 | 34 | "type": "array" |
35 | 35 | }, |
| 36 | + "admin": { |
| 37 | + "description": "In this section you can find all properties related to making admin connections from the operator to the server. These settings are not used by the server.", |
| 38 | + "properties": { |
| 39 | + "tlsSecret": { |
| 40 | + "description": "If mTLS is required, this references a secret containing the client TLS configuration for the admin client. Reference: https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets.", |
| 41 | + "type": "string" |
| 42 | + } |
| 43 | + }, |
| 44 | + "type": "object", |
| 45 | + "additionalProperties": false |
| 46 | + }, |
| 47 | + "automountServiceAccountToken": { |
| 48 | + "description": "Set this to to false to disable automounting the default ServiceAccount Token and Service CA. This is enabled by default.", |
| 49 | + "type": "boolean" |
| 50 | + }, |
36 | 51 | "bootstrapAdmin": { |
37 | 52 | "description": "In this section you can configure Keycloak's bootstrap admin - will be used only for initial cluster creation.", |
38 | 53 | "properties": { |
|
271 | 286 | "description": "Labels to be appended to the Service object", |
272 | 287 | "type": "object" |
273 | 288 | }, |
| 289 | + "serviceHttpPort": { |
| 290 | + "description": "The HTTP port exposed on the Kubernetes Service. When set, the Service will use this port while the pod still listens on httpPort.", |
| 291 | + "type": "integer" |
| 292 | + }, |
| 293 | + "serviceHttpsPort": { |
| 294 | + "description": "The HTTPS port exposed on the Kubernetes Service. When set, the Service will use this port while the pod still listens on httpsPort.", |
| 295 | + "type": "integer" |
| 296 | + }, |
| 297 | + "serviceName": { |
| 298 | + "description": "The name of the Kubernetes Service. When not set, the name defaults to the Keycloak CR name with a \"-service\" suffix.", |
| 299 | + "type": "string" |
| 300 | + }, |
274 | 301 | "tlsSecret": { |
275 | 302 | "description": "A secret containing the TLS configuration for HTTPS. Reference: https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets.", |
276 | 303 | "type": "string" |
|
2010 | 2037 | "serviceMonitor": { |
2011 | 2038 | "description": "Configuration related to the generated ServiceMonitor", |
2012 | 2039 | "properties": { |
| 2040 | + "annotations": { |
| 2041 | + "additionalProperties": { |
| 2042 | + "type": "string" |
| 2043 | + }, |
| 2044 | + "description": "Annotations to be appended to the Service object", |
| 2045 | + "type": "object" |
| 2046 | + }, |
2013 | 2047 | "enabled": { |
2014 | 2048 | "default": true, |
2015 | 2049 | "description": "Enables or disables the creation of the ServiceMonitor.", |
|
2020 | 2054 | "description": "Interval at which metrics should be scraped", |
2021 | 2055 | "type": "string" |
2022 | 2056 | }, |
| 2057 | + "labels": { |
| 2058 | + "additionalProperties": { |
| 2059 | + "type": "string" |
| 2060 | + }, |
| 2061 | + "description": "Labels to be appended to the Service object", |
| 2062 | + "type": "object" |
| 2063 | + }, |
2023 | 2064 | "scrapeTimeout": { |
2024 | 2065 | "default": "10s", |
2025 | 2066 | "description": "Timeout after which the scrape is ended", |
|
2046 | 2087 | "type": "object", |
2047 | 2088 | "additionalProperties": false |
2048 | 2089 | }, |
| 2090 | + "telemetry": { |
| 2091 | + "description": "In this section you can configure general shared OpenTelemetry settings for Keycloak.", |
| 2092 | + "properties": { |
| 2093 | + "endpoint": { |
| 2094 | + "description": "OpenTelemetry endpoint to connect to.", |
| 2095 | + "type": "string" |
| 2096 | + }, |
| 2097 | + "protocol": { |
| 2098 | + "description": "OpenTelemetry protocol used for the telemetry data (default 'grpc'). For more information, check the OpenTelemetry guide.", |
| 2099 | + "type": "string" |
| 2100 | + }, |
| 2101 | + "resourceAttributes": { |
| 2102 | + "additionalProperties": { |
| 2103 | + "type": "string" |
| 2104 | + }, |
| 2105 | + "description": "OpenTelemetry resource attributes present in the exported telemetry data to characterize the telemetry producer.", |
| 2106 | + "type": "object" |
| 2107 | + }, |
| 2108 | + "serviceName": { |
| 2109 | + "description": "OpenTelemetry service name. Takes precedence over 'service.name' defined in the 'resourceAttributes' map.", |
| 2110 | + "type": "string" |
| 2111 | + } |
| 2112 | + }, |
| 2113 | + "type": "object", |
| 2114 | + "additionalProperties": false |
| 2115 | + }, |
2049 | 2116 | "tracing": { |
2050 | 2117 | "description": "In this section you can configure OpenTelemetry Tracing for Keycloak.", |
2051 | 2118 | "properties": { |
|
2069 | 2136 | "additionalProperties": { |
2070 | 2137 | "type": "string" |
2071 | 2138 | }, |
2072 | | - "description": "OpenTelemetry resource attributes present in the exported trace to characterize the telemetry producer.", |
| 2139 | + "description": "DEPRECATED - use the 'telemetry.resourceAttributes' instead. OpenTelemetry resource attributes present in the exported trace to characterize the telemetry producer.", |
2073 | 2140 | "type": "object" |
2074 | 2141 | }, |
2075 | 2142 | "samplerRatio": { |
|
2081 | 2148 | "type": "string" |
2082 | 2149 | }, |
2083 | 2150 | "serviceName": { |
2084 | | - "description": "OpenTelemetry service name. Takes precedence over 'service.name' defined in the 'resourceAttributes' map.", |
| 2151 | + "description": "DEPRECATED - use the 'telemetry.serviceName' instead. OpenTelemetry service name. Takes precedence over 'service.name' defined in the 'resourceAttributes' map.", |
2085 | 2152 | "type": "string" |
2086 | 2153 | } |
2087 | 2154 | }, |
|
2866 | 2933 | "type": "object", |
2867 | 2934 | "additionalProperties": false |
2868 | 2935 | }, |
| 2936 | + "fileKeyRef": { |
| 2937 | + "properties": { |
| 2938 | + "key": { |
| 2939 | + "type": "string" |
| 2940 | + }, |
| 2941 | + "optional": { |
| 2942 | + "type": "boolean" |
| 2943 | + }, |
| 2944 | + "path": { |
| 2945 | + "type": "string" |
| 2946 | + }, |
| 2947 | + "volumeName": { |
| 2948 | + "type": "string" |
| 2949 | + } |
| 2950 | + }, |
| 2951 | + "type": "object", |
| 2952 | + "additionalProperties": false |
| 2953 | + }, |
2869 | 2954 | "resourceFieldRef": { |
2870 | 2955 | "properties": { |
2871 | 2956 | "containerName": { |
|
3453 | 3538 | "restartPolicy": { |
3454 | 3539 | "type": "string" |
3455 | 3540 | }, |
| 3541 | + "restartPolicyRules": { |
| 3542 | + "items": { |
| 3543 | + "properties": { |
| 3544 | + "action": { |
| 3545 | + "type": "string" |
| 3546 | + }, |
| 3547 | + "exitCodes": { |
| 3548 | + "properties": { |
| 3549 | + "operator": { |
| 3550 | + "type": "string" |
| 3551 | + }, |
| 3552 | + "values": { |
| 3553 | + "items": { |
| 3554 | + "type": "integer" |
| 3555 | + }, |
| 3556 | + "type": "array" |
| 3557 | + } |
| 3558 | + }, |
| 3559 | + "type": "object", |
| 3560 | + "additionalProperties": false |
| 3561 | + } |
| 3562 | + }, |
| 3563 | + "type": "object", |
| 3564 | + "additionalProperties": false |
| 3565 | + }, |
| 3566 | + "type": "array" |
| 3567 | + }, |
3456 | 3568 | "securityContext": { |
3457 | 3569 | "properties": { |
3458 | 3570 | "allowPrivilegeEscalation": { |
|
3828 | 3940 | "type": "object", |
3829 | 3941 | "additionalProperties": false |
3830 | 3942 | }, |
| 3943 | + "fileKeyRef": { |
| 3944 | + "properties": { |
| 3945 | + "key": { |
| 3946 | + "type": "string" |
| 3947 | + }, |
| 3948 | + "optional": { |
| 3949 | + "type": "boolean" |
| 3950 | + }, |
| 3951 | + "path": { |
| 3952 | + "type": "string" |
| 3953 | + }, |
| 3954 | + "volumeName": { |
| 3955 | + "type": "string" |
| 3956 | + } |
| 3957 | + }, |
| 3958 | + "type": "object", |
| 3959 | + "additionalProperties": false |
| 3960 | + }, |
3831 | 3961 | "resourceFieldRef": { |
3832 | 3962 | "properties": { |
3833 | 3963 | "containerName": { |
|
4415 | 4545 | "restartPolicy": { |
4416 | 4546 | "type": "string" |
4417 | 4547 | }, |
| 4548 | + "restartPolicyRules": { |
| 4549 | + "items": { |
| 4550 | + "properties": { |
| 4551 | + "action": { |
| 4552 | + "type": "string" |
| 4553 | + }, |
| 4554 | + "exitCodes": { |
| 4555 | + "properties": { |
| 4556 | + "operator": { |
| 4557 | + "type": "string" |
| 4558 | + }, |
| 4559 | + "values": { |
| 4560 | + "items": { |
| 4561 | + "type": "integer" |
| 4562 | + }, |
| 4563 | + "type": "array" |
| 4564 | + } |
| 4565 | + }, |
| 4566 | + "type": "object", |
| 4567 | + "additionalProperties": false |
| 4568 | + } |
| 4569 | + }, |
| 4570 | + "type": "object", |
| 4571 | + "additionalProperties": false |
| 4572 | + }, |
| 4573 | + "type": "array" |
| 4574 | + }, |
4418 | 4575 | "securityContext": { |
4419 | 4576 | "properties": { |
4420 | 4577 | "allowPrivilegeEscalation": { |
|
4734 | 4891 | "hostname": { |
4735 | 4892 | "type": "string" |
4736 | 4893 | }, |
| 4894 | + "hostnameOverride": { |
| 4895 | + "type": "string" |
| 4896 | + }, |
4737 | 4897 | "imagePullSecrets": { |
4738 | 4898 | "items": { |
4739 | 4899 | "properties": { |
|
4799 | 4959 | "type": "object", |
4800 | 4960 | "additionalProperties": false |
4801 | 4961 | }, |
| 4962 | + "fileKeyRef": { |
| 4963 | + "properties": { |
| 4964 | + "key": { |
| 4965 | + "type": "string" |
| 4966 | + }, |
| 4967 | + "optional": { |
| 4968 | + "type": "boolean" |
| 4969 | + }, |
| 4970 | + "path": { |
| 4971 | + "type": "string" |
| 4972 | + }, |
| 4973 | + "volumeName": { |
| 4974 | + "type": "string" |
| 4975 | + } |
| 4976 | + }, |
| 4977 | + "type": "object", |
| 4978 | + "additionalProperties": false |
| 4979 | + }, |
4802 | 4980 | "resourceFieldRef": { |
4803 | 4981 | "properties": { |
4804 | 4982 | "containerName": { |
|
5386 | 5564 | "restartPolicy": { |
5387 | 5565 | "type": "string" |
5388 | 5566 | }, |
| 5567 | + "restartPolicyRules": { |
| 5568 | + "items": { |
| 5569 | + "properties": { |
| 5570 | + "action": { |
| 5571 | + "type": "string" |
| 5572 | + }, |
| 5573 | + "exitCodes": { |
| 5574 | + "properties": { |
| 5575 | + "operator": { |
| 5576 | + "type": "string" |
| 5577 | + }, |
| 5578 | + "values": { |
| 5579 | + "items": { |
| 5580 | + "type": "integer" |
| 5581 | + }, |
| 5582 | + "type": "array" |
| 5583 | + } |
| 5584 | + }, |
| 5585 | + "type": "object", |
| 5586 | + "additionalProperties": false |
| 5587 | + } |
| 5588 | + }, |
| 5589 | + "type": "object", |
| 5590 | + "additionalProperties": false |
| 5591 | + }, |
| 5592 | + "type": "array" |
| 5593 | + }, |
5389 | 5594 | "securityContext": { |
5390 | 5595 | "properties": { |
5391 | 5596 | "allowPrivilegeEscalation": { |
|
6923 | 7128 | "type": "object", |
6924 | 7129 | "additionalProperties": false |
6925 | 7130 | }, |
| 7131 | + "podCertificate": { |
| 7132 | + "properties": { |
| 7133 | + "certificateChainPath": { |
| 7134 | + "type": "string" |
| 7135 | + }, |
| 7136 | + "credentialBundlePath": { |
| 7137 | + "type": "string" |
| 7138 | + }, |
| 7139 | + "keyPath": { |
| 7140 | + "type": "string" |
| 7141 | + }, |
| 7142 | + "keyType": { |
| 7143 | + "type": "string" |
| 7144 | + }, |
| 7145 | + "maxExpirationSeconds": { |
| 7146 | + "type": "integer" |
| 7147 | + }, |
| 7148 | + "signerName": { |
| 7149 | + "type": "string" |
| 7150 | + } |
| 7151 | + }, |
| 7152 | + "type": "object", |
| 7153 | + "additionalProperties": false |
| 7154 | + }, |
6926 | 7155 | "secret": { |
6927 | 7156 | "properties": { |
6928 | 7157 | "items": { |
|
7182 | 7411 | "update": { |
7183 | 7412 | "description": "Configuration related to Keycloak deployment updates.", |
7184 | 7413 | "properties": { |
| 7414 | + "labels": { |
| 7415 | + "additionalProperties": { |
| 7416 | + "type": "string" |
| 7417 | + }, |
| 7418 | + "description": "Optionally set to add additional labels to the Job created for the update.", |
| 7419 | + "type": "object" |
| 7420 | + }, |
7185 | 7421 | "revision": { |
7186 | 7422 | "description": "When use the Explicit strategy, the revision signals if a rolling update can be used or not.", |
7187 | 7423 | "type": "string" |
|
0 commit comments