-
Notifications
You must be signed in to change notification settings - Fork 8.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[bitnami/keycloak] Support ingress for Keycloak admin area #21712
Comments
Did you try using the |
Thanks for the suggestion, I wasn't aware of this And I suppose that the dual public/private ingress is not unique to my deployment, isn't it? |
I don't recall seeing this issue in the past, if you think it's a common scenario, feel free to submit a PR adding the admin-ingress.yaml |
This Issue has been automatically marked as "stale" because it has not had recent activity (for 15 days). It will be closed if no further activity occurs. Thanks for the feedback. |
Not stale. |
This Issue has been automatically marked as "stale" because it has not had recent activity (for 15 days). It will be closed if no further activity occurs. Thanks for the feedback. |
Not stale. |
This Issue has been automatically marked as "stale" because it has not had recent activity (for 15 days). It will be closed if no further activity occurs. Thanks for the feedback. |
Unstale. |
I don't think everyone is going to deploy Keycloak using AWS only. We have been running bitnami/keycloak for last 4 years for on-prem based solutions where only 1 single domain is required. Now using 2 FQDNS for identity and admin area are strong NOT feasible for our deployment requirements, |
I'm not sure I understand what your point was, @busyboy77. |
Name and Version
bitnami/keycloak
What is the problem this feature will solve?
My deployment of Keycloak on AWS consists of 2 "interfaces":
/realms/my-public-realm/*
/admin
Combined with the use of
KC_HOSTNAME=keycloak.public.company.com
,KC_HOSTNAME_ADMIN=keycloak.private.company.com
, and settingfrontendUrl=https://keycloak.private.company.com
on themaster
realm, I can keep the separation between the public part and private part of my Keycloak deployment.The problem is that the Bitnami chart supports only a single ingress.
So I had to add a new
ingress-2.yaml
in my own deployment pipeline, which is more or less a copy ofingress.yaml
.Which is obviously far from ideal in terms of maintenance, code duplication, etc.
What is the feature you are proposing to solve the problem?
I propose to add support for a so-called "admin ingress" to the chart, in addition to the existing one.
In terms of functionality, the admin ingress would be identical to the regular
ingress
but configurable via values underadminIngress
.What do you think?
In terms of implementation, we could copy
ingress.yaml
intoadmin-ingress.yaml
, and add the necessary changes invalues.yaml
.Or, instead of duplicating
ingress.yaml
, we could introduce a template that could generate bothingress
andadminIngress
resources.The text was updated successfully, but these errors were encountered: