Commit graph

137 commits

Author SHA1 Message Date
Steven Hawkins
bc38b5db1b
fix: add proxy env propagation (#30741)
* fix: add proxy env propagation

closes: #30165

Signed-off-by: Steve Hawkins <shawkins@redhat.com>

* Update operator/src/main/java/org/keycloak/operator/controllers/KeycloakDeploymentDependentResource.java

Co-authored-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Martin Bartoš <mabartos@redhat.com>
2024-06-25 18:02:27 +02:00
Sascha Marcel Schmidt
13ef6fb1c8
fix(operator): Scale statefulset to 0 to prepare for update (#30450)
When performing a keycloak update, the operator is supposed to make sure that
potential database migrations are run with only one pod active. This change
makes the operator scale down the stateful set to zero pods in preparation for
the update. The next reconciliation loop will scale the stateful set back up
and change the image, making sure migrations are being run on the first pod
that is brought up. This also makes sure that the rollover works even if the
infinispan versions are incompatible. (ref: #30449)

Signed-off-by: Schmidt, Sascha (sasschmidt) <sascha.schmidt@breuninger.de>
2024-06-21 13:44:54 +00:00
Václav Muzikář
0846181809
Use only plain hostname in Ingress (#30345)
Closes #30332

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-06-12 08:54:54 +02:00
Steven Hawkins
5059a02eb2
fix: minor refinements to collection utils (#29536)
closes: #29535

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-06-06 10:07:34 -04:00
Steven Hawkins
a1feb167d6
fix: adds a test and permissions for cache configmap (#28652)
closes: #28638

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-04-12 13:37:49 +02:00
Václav Muzikář
33f580daa4
Hostname v2 for Operator (#28599)
Closes #27728

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-04-10 18:56:47 +02:00
Martin Bartoš
7f048300fe
Support management port for health and metrics (#27629)
* Support management port for health and metrics

Closes #19334

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Deprecate option

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Remove relativePath first-class citizen, rename ManagementSpec

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

* Fix KeycloakDistConfiguratorTest

Signed-off-by: Martin Bartoš <mabartos@redhat.com>

---------

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-04-03 16:18:44 +02:00
Anh Pham
0286e7ad5d
To support the Istio choose protocol, add the port name to the discovery service. (#27940)
Signed-off-by: Anh Pham <anhpn.uit@gmail.com>
Co-authored-by: Anh Pham <anh.pham4@hitachids.com>
2024-03-26 17:36:53 +01:00
Steven Hawkins
05056330dc
fix: making the truststore name field optional (#28013)
closes: #28012

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-03-19 18:02:29 +00:00
Alexander Schwartz
bba701437f
Use JDK17 features to simplify code with multiline strings (#27495)
Closes #27494

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
2024-03-05 09:37:38 +01:00
Václav Muzikář
33425dacd9
Add proxy-headers option to the Keycloak CR (#27092)
Closes #25179

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-02-21 12:19:37 +01:00
Václav Muzikář
de60c9b469
Tweak the default memory request and limit in the Operator (#27170)
Closes #27169

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2024-02-21 10:03:17 +01:00
Martin Bartoš
59007844d9
Supported option to specify resource management for pods in Keycloak CR (#26661)
Closes #26456

Signed-off-by: Martin Bartoš <mabartos@redhat.com>
2024-02-15 13:38:41 +01:00
Steven Hawkins
5f0ee7b0f7
fix: adds service-ca.crt to the trust stores (#26912)
closes: #26910

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-02-09 14:32:12 +01:00
Steven Hawkins
77581d2527
fix: change from operator. to kc.operator. keys (#26414)
closes #12352

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-02-08 15:03:20 +01:00
Sol Roberts
5401c63c9e
Update Keycloak operator example with correct hostname syntax (#26796)
* Update Keycloak operator example with correct hostname syntax

Closes #26281

Signed-off-by: badgerops <github@badgerops.net>

* Adding missing ',' to ensure valid JSON structure

Closes #26281

Signed-off-by: Alexander Schwartz <aschwart@redhat.com>

---------

Signed-off-by: badgerops <github@badgerops.net>
Signed-off-by: Alexander Schwartz <aschwart@redhat.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2024-02-06 12:21:26 +01:00
Steven Hawkins
3001855858
fix: using iteration to allow recursive structures (#26789)
closes: #21130

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-02-05 20:10:27 +01:00
Michal Hajas
c579cf737f
Fix Keycloak operator setting for cache-config-file (#26666)
Fixes: #26458

Signed-off-by: Michal Hajas <mhajas@redhat.com>
2024-02-01 12:47:35 +01:00
Steven Hawkins
37acb2fd09
task: upgrading to quarkus 3.7.0.CR1 (#26203)
there are several downgrades from the quarkus versions, and some
additional logic needed to handle changes with re-creating the
configuration

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-01-31 18:23:07 +00:00
Steven Hawkins
f55e903092
Convert watching to polling and adding infinispan config file support (#26510)
Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2024-01-31 12:57:34 +00:00
Sol Roberts
29bc02a699
fix http_tlsSecret example for operator (#26282)
Signed-off-by: BadgerOps <github@badgerops.net>
2024-01-25 11:10:56 +01:00
Steven Hawkins
bee7595275
fix: adding the kube ca cert to the truststores
closes #10794

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Alexander Schwartz <alexander.schwartz@gmx.net>
2023-12-18 15:56:43 +01:00
Steven Hawkins
08751001db
enhance: adds truststores to the keycloak cr (#25215)
also generally correcting the misspelling trustore

closes: #24798

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-12-14 11:15:06 -03:00
Steven Hawkins
4db4982e9d
enhance: adding a start optimized flag (#25216)
closes: #25015



Update docs/guides/operator/customizing-keycloak.adoc
Update docs/documentation/release_notes/topics/24_0_0.adoc
Update operator/src/main/java/org/keycloak/operator/crds/v2alpha1/deployment/KeycloakSpec.java

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
2023-12-11 16:15:16 +00:00
Steven Hawkins
319d9e78fb
fix: use name to find the admin secret (#25362)
closes: #25307

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
2023-12-08 15:14:09 +01:00
Václav Muzikář
040124bfa7
Fix missing CRD metadata in Operator CSV (#25043)
Closed #24984

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2023-11-27 12:37:35 +00:00
Václav Muzikář
3bc7ef7ed5
Update to Quarkus 3.2.9 (#24842)
Closes #24841
Closes #24160

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
Co-authored-by: Bruno Oliveira da Silva <bruno@abstractj.com>
Co-authored-by: Alexander Schwartz <aschwart@redhat.com>
2023-11-20 14:27:13 +01:00
Steven Hawkins
b6d5083e9b
fix: check operand StatefulSet is ready before creating job (#24720)
closes #24526

Signed-off-by: Steve Hawkins <shawkins@redhat.com>
Co-authored-by: Piotr Godowski <Piotr.Godowski@pl.ibm.com>
2023-11-15 14:08:27 +01:00
Václav Muzikář
511fc76d50
Remove Quarkus branding from the Operator log (#24418)
Closes #24413

Signed-off-by: Václav Muzikář <vmuzikar@redhat.com>
2023-10-31 14:18:18 +00:00
Steven Hawkins
5ff5e12782
fix: moves jgroups.dns.query to a system property (#24057)
* fix: moves jgroups.dns.query to a system property

closes #21830

* removing the dns query from import

* removing the dns query from import

also removing cache-stack
2023-10-20 09:50:29 +02:00
Pierre Prinetti
22868406c2
operator: Replace dead documentation link (#23777)
Before this patch, the documentation link generated for the Operator
page resulted in a 404 Not Found on Github pages.

With this change, the documentation link points to the "Operator" anchor
in the Keycloak docs index. Note that the operator docs don't seem to be
versioned on the Keycloak website.
2023-10-19 11:53:46 +00:00
Alex Szczuczko
359a946a6f
Optionally accept RELATED_IMAGE_KEYCLOAK as the operand coordinate (#24018)
This changes the quarkus configuration of the operator so that if the
RELATED_IMAGE_KEYCLOAK environment variable is present, it will be
accepted over the default value

Closes #24017
2023-10-17 15:17:51 +00:00
Steven Hawkins
a65af2d254
Converts keycloakdeployment to a dependent resource (#22591)
Closes #22225
2023-10-06 17:52:50 +00:00
Steven Hawkins
d351290c0c
switching the operator role to clusterrole for ingresses config (#23641)
closes #23629
2023-10-03 12:31:23 +02:00
Steven Hawkins
0bae359058
narrows condition status to a string (#22439)
Closes #21299
2023-09-22 18:29:29 +02:00
Steven Hawkins
7d1e9a783f
adds a default domain on openshift if one is not specified (#23324)
Closes #21741
2023-09-21 14:43:29 +02:00
Steven Hawkins
b343f87c60
ensures support for cluster-wide monitoring (#22821)
Partially addresses #15888
2023-09-19 17:46:37 +00:00
Steven Hawkins
ffc6bc497a
allows normal reconciliation to continue even if secrets are not present (#22404)
* allows normal reconciliation to continue even if secrets are not present

Closes #22170

* adds polling if any secret (in particular optional) is not present

Closes #22170
2023-09-01 10:34:31 +02:00
Steven Hawkins
7604370a00
removes quarkus-openshift since it's not being utilized (#22834)
Closes #10963
2023-08-31 09:07:15 +02:00
Steven Hawkins
6b0e1f87f9
converts the ingress logic to a conditional dependent resource (#22221)
Closes #22206
2023-08-21 17:34:59 +00:00
Steven Hawkins
e516d27f24
Converts realm import to dependent resources (#22299)
Closes #22223
2023-08-21 16:18:56 +00:00
Steven Hawkins
7a71d3ef92
removing the quarkus-minikube dependency (#22521)
Closes #22517
2023-08-21 14:07:14 +00:00
Steven Hawkins
48a4102c97
removes logging full resources to omit secret data (#22467)
Closes #22080
2023-08-15 16:01:40 +00:00
Steven Hawkins
c18475fc57
adds the http service port if enabled (#22155)
Closes #22131
2023-08-10 16:01:57 +00:00
Steven Hawkins
1d444ff862
converts the keycloak services to dependent resources (#22257)
Closes #22207
2023-08-10 13:56:13 +00:00
Steven Hawkins
697cd8595b
switches the admin secret to a dependent resource (#22044)
Closes #22183
2023-08-03 14:37:43 +00:00
Steven Hawkins
c2d5cc67af
simplifying status updates to a single method for each controller (#22081)
also removing the getValueFromSubSpec method

Closes #22182
2023-08-02 14:44:40 +00:00
Steven Hawkins
ec86d16c43
makes spec.replicas optional (#22152)
Closes #22151
2023-08-02 10:50:14 +00:00
Václav Muzikář
cce0778886 Change postgres image for Operator tests
Closes #22032
2023-08-01 20:18:48 +02:00
Steven Hawkins
b2e11735ed
refinements to improve how pod logs are saved (#22093)
also adding more information into the main log

Closes #10128
2023-07-31 17:05:30 +02:00