apiVersion: v1 data: password: YkJiNXU3NXRaYUR0ZHVudw== username: YWRtaW4= kind: Secret metadata: name: keycloak-admin type: kubernetes.io/basic-auth --- apiVersion: v1 kind: Service metadata: name: keycloak labels: app: keycloak spec: ports: - name: http port: 8080 targetPort: 8080 selector: app: keycloak type: LoadBalancer --- apiVersion: apps/v1 kind: Deployment metadata: name: keycloak labels: app: keycloak spec: replicas: 1 selector: matchLabels: app: keycloak template: metadata: labels: app: keycloak spec: containers: - name: keycloak image: quay.io/keycloak/keycloak:24.0.2 args: ["start-dev"] env: - name: KEYCLOAK_ADMIN valueFrom: secretKeyRef: key: username name: keycloak-admin - name: KEYCLOAK_ADMIN_PASSWORD valueFrom: secretKeyRef: key: password name: keycloak-admin - name: KC_PROXY value: "edge" - name: KC_HEALTH_ENABLED value: "true" - name: KC_METRICS_ENABLED value: "true" - name: KC_HOSTNAME_STRICT_HTTPS value: "true" - name: KC_LOG_LEVEL value: INFO - name: KC_DB value: postgres - name: POSTGRES_DB valueFrom: secretKeyRef: name: keycloak-pg-cluster-app key: username - name: KC_DB_URL valueFrom: secretKeyRef: name: keycloak-pg-cluster-app key: jdbc-uri - name: KC_DB_USERNAME valueFrom: secretKeyRef: name: keycloak-pg-cluster-app key: username - name: KC_DB_PASSWORD valueFrom: secretKeyRef: name: keycloak-pg-cluster-app key: password ports: - name: http containerPort: 8080 readinessProbe: httpGet: path: /realms/master port: 8080