-
Notifications
You must be signed in to change notification settings - Fork 16.9k
[stable/keycloak] how to add ca cert for connecting https sites #10192
Comments
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Any further update will cause the issue/pull request to no longer be considered stale. Thank you for your contributions. |
This issue is being automatically closed due to inactivity. |
Can anyone answer this part as I'm also facing the same issue. |
Hey there, I have been dealing with similar issue, working with recommended KC helm chart. As stated in the KC docker docs:
and
This means, you need to store all the certs in a single secret, then mount the secret as files to appropriate destination: The secret:
Helm values:
If you need to configure truststore settings you can manipulate those using jboss CLI:
This can be useful in case you are using self signed PKIs - you might need to disable hostname verification, e.g.:
|
Is this a request for help?:
yes
Version of Helm and Kubernetes:
1.11.3
Which chart:
stable/keycloak
I am in corporate proxy environment, and my OpenID Auth URL is https (only provided).
Simple fix solution is add ca cert to keycloak docker image,
but docker image does not provide update-ca-certificates command.
So I have to do in kubernetes (helm chart),
I think I need run commands like
ca.crt file is volume mounted from secret.
How to do this ?
And I need to use below options.
I can handle this using extraArgs,
but I think it does not works actually.
For now, my values.yaml is
The text was updated successfully, but these errors were encountered: