keycloak-scim

Author	SHA1	Message	Date
Steven Hawkins	ffc6bc497a	allows normal reconciliation to continue even if secrets are not present (#22404 ) * allows normal reconciliation to continue even if secrets are not present Closes #22170 * adds polling if any secret (in particular optional) is not present Closes #22170	2023-09-01 10:34:31 +02:00
Steven Hawkins	7604370a00	removes quarkus-openshift since it's not being utilized (#22834 ) Closes #10963	2023-08-31 09:07:15 +02:00
Steven Hawkins	6b0e1f87f9	converts the ingress logic to a conditional dependent resource (#22221 ) Closes #22206	2023-08-21 17:34:59 +00:00
Steven Hawkins	e516d27f24	Converts realm import to dependent resources (#22299 ) Closes #22223	2023-08-21 16:18:56 +00:00
Steven Hawkins	7a71d3ef92	removing the quarkus-minikube dependency (#22521 ) Closes #22517	2023-08-21 14:07:14 +00:00
Steven Hawkins	48a4102c97	removes logging full resources to omit secret data (#22467 ) Closes #22080	2023-08-15 16:01:40 +00:00
Steven Hawkins	c18475fc57	adds the http service port if enabled (#22155 ) Closes #22131	2023-08-10 16:01:57 +00:00
Steven Hawkins	1d444ff862	converts the keycloak services to dependent resources (#22257 ) Closes #22207	2023-08-10 13:56:13 +00:00
Steven Hawkins	697cd8595b	switches the admin secret to a dependent resource (#22044 ) Closes #22183	2023-08-03 14:37:43 +00:00
Steven Hawkins	c2d5cc67af	simplifying status updates to a single method for each controller (#22081 ) also removing the getValueFromSubSpec method Closes #22182	2023-08-02 14:44:40 +00:00
Steven Hawkins	ec86d16c43	makes spec.replicas optional (#22152 ) Closes #22151	2023-08-02 10:50:14 +00:00
Václav Muzikář	cce0778886	Change postgres image for Operator tests Closes #22032	2023-08-01 20:18:48 +02:00
Steven Hawkins	b2e11735ed	refinements to improve how pod logs are saved (#22093 ) also adding more information into the main log Closes #10128	2023-07-31 17:05:30 +02:00
Steven Hawkins	9b0f4fb581	Removes the initial delay seconds and adds a startup probe (#21884 ) Adjusted the thresholds and delays accordingly Closes #21111	2023-07-26 10:48:54 +02:00
Václav Muzikář	9c63cf98e7	Use `--verbose` by default in Operator deployments Closes #21802	2023-07-21 18:46:01 +02:00
Steven Hawkins	1fa6f6ab2d	Adds a pod list rbac (#21832 ) Closes #21814	2023-07-20 09:05:07 +00:00
Steven Hawkins	ebe6e6c965	switches the workaround to JsonNode, which produces a cleaner crd (#21788 ) Closes #21739	2023-07-19 08:12:44 +02:00
Steven Hawkins	fa83034474	Also replaces md5 usage with sha-256 (#21162 ) closes #21125	2023-07-17 10:48:04 +02:00
Steven Hawkins	b0b9c1a76e	Switches the merging logic to using the override as the basis (#21415 ) Ensures additionalProperties are the lowest precedence Also removes support for setting the image pull secrets via the unsupported podtemplate Closes #10503	2023-07-14 12:42:03 +02:00
Václav Muzikář	6a3ea1a084	`keycloakCRName` and `realm` are no longer marked as required in KeycloakRealmImport CRD Closes #21607	2023-07-12 08:03:12 -03:00
Pedro Ruivo	165c36f9ff	Enable publishNotReadyAddresses for discovery service (#21511 ) Closes #21493	2023-07-10 17:02:55 +02:00
Václav Muzikář	ad988ca914	Upgrade to Quarkus 3.2.0.Final and QOSDK 6.2.0 Closes #21272	2023-07-03 08:11:18 -03:00
Steven Hawkins	b0e7958906	adds port names to the pod / service (#21291 ) Closes #12593	2023-07-03 08:13:30 +02:00
Steven Hawkins	5ee21ab6d1	scrapes pod container statuses when waiting for more to become available (#21257 ) Closes #10285	2023-06-30 08:49:48 +00:00
Steven Hawkins	88992dae19	widens status to be any type. (#21281 ) this is to avoid olm complaining about an incompatible schema during upgrade Relates to #13074	2023-06-29 08:57:22 +02:00
Steven Hawkins	e9c9f80e8d	adds an instance label to support multiple instances (#20906 ) Closes #10562 #14220	2023-06-28 18:05:23 +02:00
Steven Hawkins	4dba17253e	changes the label prefix to operator.keycloak.org (#21175 ) closes #21141	2023-06-28 11:21:02 +02:00
Steve Hawkins	6a92669139	finishes the conversion away from createOrReplace however this is a broader change given the implications of serverSideApply vs createOrReplace - mostly the concern of only applying the managed state not based upon an existing resource Closes #20850	2023-06-23 11:55:47 -03:00
Martin Bartoš	13a463f71e	Avoid calls to Control Plane when the secondary resource is in cache Closes #21109	2023-06-22 10:03:35 -03:00
Martin Bartoš	0ecdebc000	Incorrect Url on Keycloak Health - Liveness and Readiness, no Startup Probes Fixes #17388	2023-06-22 05:32:53 -03:00
Steve Hawkins	5701f70157	changes condition status to be a string, rather than a boolean Closes #13074	2023-06-21 17:14:33 -03:00
Steve Hawkins	14747f45ca	removing the usage of MultivaluedStringStringHashMap and ComponentExport map upstream improvements make this no longer necessary Closes #20937	2023-06-21 12:30:41 -03:00
Alex Szczuczko	3246a15442	Use quarkus-operator-sdk-bundle-generator for OLM YAMLs Closes #10911	2023-06-20 15:01:44 -03:00
Steve Hawkins	7e2565c9fe	using multiple SchemaSwap annotations instead of the schell script Closes #10736	2023-06-13 06:00:28 -03:00
Steven Hawkins	91a3ab6b87	expands the status handling to account for the prior status (#20856 ) Closes #20853	2023-06-08 17:09:39 +02:00
Steven Hawkins	075d913037	enabling keycloak to be a scalable resource (#20828 ) Closes #20825	2023-06-07 17:57:25 +02:00
Steven Hawkins	d77041f177	mostly updating the logic to newer fabric8 apis (#20825 ) Closes #20822	2023-06-07 14:58:39 +02:00
Steven Hawkins	d045156ba4	Adding the ability to set ingressClassName (#20796 ) Closes #20723	2023-06-05 21:10:39 +00:00
Václav Muzikář	f627e9535f	Add support to the Operator for setting default labels on Keycloak pods (#20661 ) Closes #20625	2023-06-01 13:39:41 +02:00
Pedro Ruivo	cffb8141e2	Allow custom annotation in Ingress (#20577 ) Closes #20576	2023-05-26 15:24:59 +00:00
Andre Nascimento RH	851ecb43fc	Stops the recreation of managed Keycloak Statefulset Pods when Keycloak Operator restarts occasionally. (#20187 )	2023-05-09 19:33:12 +02:00
Václav Muzikář	e44464d3b8	Remove OkHttp Client from the Operator Closes #19573	2023-05-05 12:10:39 -03:00
Václav Muzikář	983e40ad2b	Add OpenShift support to KeycloakIngressTest (#20030 )	2023-05-02 14:24:54 +02:00
Václav Muzikář	dd6e73ec7c	Upgrade Operator SDK to 6.0.0.CR1 --- Quarkus3 branch sync no. 14 (24.4.2023) Resolved conflicts: keycloak/operator/pom.xml - Modified	2023-04-27 13:36:54 +02:00
Alexander Schwartz	4f8d67c9fc	All commands now auto-reaugment except show-config Closes #15782 Closes #15898 Closes #17498	2023-04-21 15:06:51 +02:00
ikhomyn	84a7b57059	fix db for openshift	2023-04-21 12:36:41 +00:00
Alex Szczuczko	edaa84b1e5	Build the operator container via Dockerfile (#19642 ) Closes #16967	2023-04-21 08:32:29 +02:00
Andre Nascimento	cb78ea06b0	Make sure the customized Ingress resource isn't deleted when the Keycloak deployed by Operator is killed. Closes #14433	2023-02-16 17:31:31 +01:00
Alex Szczuczko	610e3044ad	Minimize the RPM content of the Quarkus container Even though we use `ubi8-minimal` as the parent of our container, it still has many RPMs installed that aren't necessary to run the Keycloak server. Also, since the JDK RPM (that we install on top of `ubi8-minimal`) is designed for general use, it pulls in more dependency RPMs than it strictly needs to, like cups and avahi. Keycloak will never need to access a printer itself! Trimming down these excess RPMs will improve our CVE statistics with automated scanners, and therefore let us perform fewer CVE rebuilds. `ubi8-null.sh` uses the low-level `rpm` command to identify and forcibly remove dependencies and operating system files that are not required to boot our Quarkus-based server. This includes `microdnf` and `rpm` itself! I have preserved bash however, so it's still possible to debug the container from a shell. I've created an initial set of allow/disallow lists, that seems to pass a smoke test (server boots, admin console works). This leaves 37 packages installed, with 96 removed relative to `ubi8-minimal`. We could go more minimal than this, or less minimal if required. Trial and error is required. Closes #16902	2023-02-09 11:20:09 +01:00
Michael Edgar	9896efd288	Operator: use TLS Edge termination when back-end protocol is HTTP Fixes #16807 Signed-off-by: Michael Edgar <michael@xlate.io> Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2023-02-08 16:07:43 +01:00
Martin Bartoš	eebbeb26bc	Remove invalid property from Operator properties Closes #16373	2023-01-30 08:59:49 +01:00
Václav Muzikář	01f1db600d	Fix race condition while updating Secrets labels in Operator	2022-11-07 13:07:02 +01:00
Andre Nascimento RH	d12aef0b43	Rename free-form field from 'serverConfiguration' to 'additionalOptions' in Keycloak CR.	2022-10-21 14:41:02 +02:00
Martin Bartoš	24acc4c7d1	Add hostname options to Keycloak CR Closes #14395 Co-authored-by: Václav Muzikář <vmuzikar@redhat.com>	2022-10-21 11:00:42 +02:00
Pedro Igor	2d55e1dab7	Add DB options to Keycloak CR Closes #14374 Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2022-10-20 21:21:00 +02:00
Peter Zaoral	4dfbb42680	Refine Ingress settings in Keycloak CR Closes Keycloak#14407 Signed-off-by: Peter Zaoral <pzaoral@redhat.com>	2022-10-18 17:44:50 +02:00
Václav Muzikář	19ee00ff54	Add HTTP options to Keycloak CR	2022-10-17 15:57:05 -03:00
Václav Muzikář	0afc4a8af7	Refactor `KeycloakDeploymentConfig` (#14880 ) Co-authored-by: Martin Bartoš <mabartos@redhat.com>	2022-10-14 10:42:09 -03:00
Martin Bartoš	90c1624668	Add transaction options to Keycloak CR Closes #14375	2022-10-13 08:41:47 +02:00
Martin Bartoš	7311e12066	Add features options to Keycloak CR Closes #14376	2022-10-11 15:07:44 +02:00
Václav Muzikář	20fa75f677	Upgrade Operator SDK version	2022-09-29 10:28:47 +02:00
Andre Nascimento RH	4594243a33	Add 'imagePullSecret' field to the Keycloak CR	2022-09-07 14:03:28 +02:00
Václav Muzikář	4e83b9be9d	`Recreate` upgrade strategy using the new Operator (#13326 ) Co-authored-by: Dominik Guhr <dguhr@redhat.com>	2022-07-26 13:37:20 -03:00
Dominik Guhr	9bb1299d89	change optimised to optimized also: fix kc.bat to not use autobuild in devmode anymore, fix containers.adoc to not use auto_build naming, fix build command cli help as it is not required anymore to run it beforehand.	2022-07-22 10:29:07 -03:00
Václav Muzikář	15a04021e0	Operator doesn't reconcile annotations specified in pod template	2022-07-20 10:08:57 -03:00
Pedro Igor	89028613d8	Introducing --optimise option Closes #10737	2022-07-15 15:12:17 -03:00
Andrea Peruffo	f2d71cd1c7	Switch to StatefulSet (#12757 )	2022-07-13 11:58:06 -03:00
andreaTP	006aea300d	A better structure for config-api	2022-06-28 11:33:44 -03:00
andreaTP	d66710205c	Refactor dist config to a common module	2022-05-26 12:07:03 -03:00
andreaTP	8882c09901	Fix operator watching an alternative namespace	2022-05-19 12:43:43 -03:00
andreaTP	2747729fbb	Review http/https and proxy settings in operator Co-authored-by: Dominik Guhr <dguhr@redhat.com>	2022-05-19 09:38:42 -03:00
Andrea Peruffo	c2cb1ef260	Skip the build step in the Realm import job if using a custom image (#11755 )	2022-05-17 10:52:41 -03:00
andreaTP	76f83f0ab2	Use the entire podTemplateSpec to spawn the realm-import job	2022-05-06 17:00:15 -03:00
andreaTP	1f47cb2795	Fix disableDefaultIngress CR field of the operator	2022-04-29 10:48:36 -03:00
Andrea Peruffo	7986872ae0	Inject the operand version as env var (#11511 )	2022-04-20 11:09:08 +02:00
Václav Muzikář	046935b9e1	Update Operator SDK version Co-Authored-By: andreaTP <andrea.peruffo1982@gmail.com>	2022-04-19 09:40:35 -03:00
Václav Muzikář	66b1c2b167	Change the CRD API group in the operator	2022-04-12 09:38:40 -03:00
Andrea Peruffo	3bfc6721b3	Add JsonPropertyDescription on all CR fields (#11052 )	2022-04-08 11:55:43 +02:00
Andrea Peruffo	7816e69e38	Build the Olm bundle and test it in CI (#10949 ) * Building the OLM bundle * kustomize the main CRD for the OLM bundle * minor fixes	2022-04-08 10:22:01 +02:00
andreaTP	f93a7d63f7	Switch to auto-build off in case of custom images	2022-03-30 12:46:32 -03:00
andreaTP	298ce1888b	Change base image and bump dependencies	2022-03-30 12:45:05 -03:00
Andrea Peruffo	bf135c86ba	Remove extensions support from the operator CRD (#10848 )	2022-03-24 11:00:19 +01:00
Václav Muzikář	7d6c6fff17	Improve naming in serverConfiguration in the Keycloak CRD (#10847 )	2022-03-23 13:51:27 +01:00
Václav Muzikář	c0255cbeea	Secret references in Keycloak CRD (#10716 )	2022-03-22 11:16:54 +01:00
andreaTP	59450948f4	Initial bootstrap admin	2022-03-16 10:44:25 -03:00
andreaTP	c3348c8931	Deploy a default ingress along with the Deployment	2022-03-16 09:54:48 -03:00
andreaTP	533a332ca9	Append the legacy CRD using a Json patch	2022-03-14 18:09:33 -03:00
andreaTP	6504c058dd	Harden operator CI	2022-03-09 10:30:18 -03:00
andreaTP	fd2cd688b8	TLS config in the operator	2022-03-08 15:21:11 -03:00
Jonathan Vila	c4b978b6c8	Operator Clustering support Co-authored-by: Jonathan Vila <jvilalop@redhat.com> Co-authored-by: Andrea Peruffo <andrea.peruffo1982@gmail.com>	2022-03-03 16:22:01 -03:00
Andrea Peruffo	f20cdd6d2a	Add Pod-Template to the Keycloak Deployment Spec (#10098 )	2022-03-02 08:13:57 +01:00
andreaTP	6bce8b80b9	Add extensions as init container	2022-02-24 15:17:38 -03:00
andreaTP	59d9e3e3ee	Enable the heatlh endpoints under a flag	2022-02-24 14:35:42 -03:00
andreaTP	541043c862	Run the operator tests using a fresh build of Keycloak	2022-02-15 10:01:53 -03:00
andreaTP	98d4436313	Keycloak operator Realm bulk import	2022-02-09 14:28:18 -03:00
Jonathan Vila	3fd725a3f5	Test Baseline (#9625 ) Closes #9174 Signed-off-by: jonathan <jvilalop@redhat.com>	2022-02-03 09:38:45 +01:00
Andrea Peruffo	24d6f75d11	CRD generation from RealmRepresentation (#9759 ) Enabling CRD generation from RealmRepresentation Closes #9759	2022-01-27 10:56:46 +01:00
Václav Muzikář	6b485b8603	Baseline for Keycloak deployment in operator	2022-01-25 11:06:26 -03:00
andreaTP	90d6432d16	Proper kustomize setup for the operator	2022-01-24 13:13:16 -03:00
Andrea Peruffo	8c5e158db4	Baseline for the new Keycloak operator (#9381 ) * Baseline for the new Keycloak operator * v2alpha1 and better kustomization setup	2022-01-12 09:06:10 +01:00

1 2 3

150 commits