xmlking
diff --git a/‎.deploy/api/Dockerfile
Lines changed: 2 additions & 1 deletion b/‎.deploy/api/Dockerfile
Lines changed: 2 additions & 1 deletion
diff --git a/‎.deploy/api/README.md
Lines changed: 3 additions & 2 deletions b/‎.deploy/api/README.md
Lines changed: 3 additions & 2 deletions
diff --git a/‎.deploy/api/helm/README.md
Lines changed: 1 addition & 1 deletion b/‎.deploy/api/helm/README.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎.deploy/api/helm/values-dev.yaml
Lines changed: 3 additions & 1 deletion b/‎.deploy/api/helm/values-dev.yaml
Lines changed: 3 additions & 1 deletion
diff --git a/‎.deploy/api/helm/values-prod.yaml
Lines changed: 3 additions & 1 deletion b/‎.deploy/api/helm/values-prod.yaml
Lines changed: 3 additions & 1 deletion
diff --git a/‎.deploy/api/manual/01-ngxapi-configmap.yaml
Lines changed: 2 additions & 1 deletion b/‎.deploy/api/manual/01-ngxapi-configmap.yaml
Lines changed: 2 additions & 1 deletion
diff --git a/‎.deploy/keycloak/LDAP.md
Lines changed: 9 additions & 9 deletions b/‎.deploy/keycloak/LDAP.md
Lines changed: 9 additions & 9 deletions
diff --git a/‎.deploy/keycloak/README.md
Lines changed: 2 additions & 2 deletions b/‎.deploy/keycloak/README.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎.deploy/keycloak/TESTING.md
Lines changed: 1 addition & 1 deletion b/‎.deploy/keycloak/TESTING.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎.deploy/keycloak/realm-import/realm-export.json
Lines changed: 3 additions & 3 deletions b/‎.deploy/keycloak/realm-import/realm-export.json
Lines changed: 3 additions & 3 deletions
@@ -68,7 +68,8 @@ ARG NAME=ngxapi
 ARG VENDOR=sumo
 
 # Metadata
-LABEL org.label-schema.build-date=$BUILD_DATE \
+LABEL maintainer="Sumanth <xmlking@gmail.com>"  \
+      org.label-schema.build-date=$BUILD_DATE \
       org.label-schema.name=$NAME \
       org.label-schema.description="NGX Api" \
       org.label-schema.url="https://example.com" \
 
@@ -5,8 +5,9 @@ Build and Deploy NgxApi
 ### Build
 
 ```bash
-# build, optinally use `--no-cache`
-VERSION=2.0.0-SNAPSHOT
+# build, optionally use `--no-cache`
+export VERSION=2.0.0-SNAPSHOT
+export DOCKER_BUILDKIT=1
 docker build \
 --build-arg VERSION=$VERSION \
 --build-arg BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ') \
 
@@ -83,7 +83,7 @@ kubectl apply --recursive -f generated/nodeapp/* --namespace default
 
 ngxapi can be accessed:
 
-* Within your cluster, at the following DNS name at port 80:
+* Within your cluster, at the following DNS name at port 3000:
 
   ```
   ngxapi-nodeapp.default.svc.cluster.local
 
@@ -45,7 +45,9 @@ env:
   - name: TYPEORM_LOGGING
     value: 'false'
   - name: OIDC_ISSUER_URL
-    value: 'https://keycloak-ngx1.1d35.starter-us-east-1.openshiftapps.com/auth/realms/ngx'
+    value: 'https://keycloak.traefik.k8s/auth/realms/ngx'
+  - name: OIDC_JWKS_URL
+    value: 'http://keycloak-headless:8080/auth/realms/ngx/protocol/openid-connect/certs'
   - name: OIDC_CLIENT_ID
     value: ngxapi
   - name: EMAIL_HOST
 
@@ -58,7 +58,9 @@ env:
   - name: TYPEORM_LOGGING
     value: 'false'
   - name: OIDC_ISSUER_URL
-    value: 'https://keycloak-ngx1.1d35.starter-us-east-1.openshiftapps.com/auth/realms/ngx'
+    value: 'https://keycloak.traefik.k8s/auth/realms/ngx'
+  - name: OIDC_JWKS_URL
+    value: 'http://keycloak-headless:8080/auth/realms/ngx/protocol/openid-connect/certs'
   - name: OIDC_CLIENT_ID
     value: ngxapi
   - name: EMAIL_HOST
 
@@ -12,7 +12,8 @@ data:
   TYPEORM_DATABASE: postgres
   TYPEORM_USERNAME: postgres
   TYPEORM_LOGGING: 'false'
-  OIDC_ISSUER_URL: 'https://keycloak-ngx1.1d35.starter-us-east-1.openshiftapps.com/auth/realms/ngx'
+  OIDC_ISSUER_URL: 'https://keycloak.traefik.k8s/auth/realms/ngx'
+  OIDC_JWKS_URL: 'http://keycloak-headless:8080/auth/realms/ngx/protocol/openid-connect/certs'
   OIDC_CLIENT_ID: ngxapi
   EMAIL_HOST: mail.google.com
   EMAIL_PORT: '25'
 
@@ -48,12 +48,12 @@ Post-Install KeyCloak Setup and LDAP Configuration
     Membership User LDAP Attribute: sAMAccountName
     LDAP Filter: (&(objectCategory=Group)(cn=IMP_GROUP_*))
     Member-Of LDAP Attribute: memberOf
-    Client ID: ngxapp (optional)
+    Client ID: ngxweb (optional)
     ```
  
-5. Add new `telephone number` for `ngxapp` client Mappers (optional)
+5. Add new `telephone number` for `ngxweb` client Mappers (optional)
 
-    > Clients > ngxapp > Mappers > telephone number
+    > Clients > ngxweb > Mappers > telephone number
 
     ```
     Name: telephone number
@@ -63,9 +63,9 @@ Post-Install KeyCloak Setup and LDAP Configuration
     Claim JSON Type: String
     ```
  
-6. Add `NGX_ADMIN To Admin` for `ngxapp` client Mappers (optional)
+6. Add `NGX_ADMIN To Admin` for `ngxweb` client Mappers (optional)
 
-    > Clients > ngxapp > Mappers > my_group to admin
+    > Clients > ngxweb > Mappers > my_group to admin
 
     ```
     Name:  NGX_ADMIN to admin
@@ -74,10 +74,10 @@ Post-Install KeyCloak Setup and LDAP Configuration
     New Role Name: ROLE_ADMIN
     ```
 
-7. Add `groups` for `ngxapp` client Mappers (optional)
+7. Add `groups` for `ngxweb` client Mappers (optional)
     > k8s is configured to reed groups from ID_TOKEN/ACCESS_TOKEN, so create groups claim
 
-    > Clients > ngxapp > Mappers > groups
+    > Clients > ngxweb > Mappers > groups
 
     ```
     Name:  groups
@@ -102,9 +102,9 @@ Post-Install KeyCloak Setup and LDAP Configuration
 
 9. Turn off `Full Scope Allowed` (this step is not needed - buggy)
 
-    > Under Clients > ngxapp > Scope
+    > Under Clients > ngxweb > Scope
     
-    Turn off `Full Scope Allowed` for `ngxapp` client and select few Realm Roles
+    Turn off `Full Scope Allowed` for `ngxweb` client and select few Realm Roles
 
 
 ### FAQ
 
@@ -65,7 +65,7 @@ PROXY_ADDRESS_FORWARDING="true"
 > Open Keycloak WebConsole
 
 1. Create a Keycloak realm called `ngx` via `Master > Add realm` menu, and switch to `ngx` realm
-2. Create a public client called `ngxapp` and `ngxapi` under realm `ngx`
+2. Create a public client called `ngxweb` and `ngxapi` under realm `ngx`
 3. Create a role `ROLE_USER` , `ROLE_ADMIN` under realm `ngx`
 4. Add a user `sumo`, `sumo1` , `sumo2` , `sumo3` under realm `ngx` and add the user to user role `ROLE_USER`
 5. Add a user `ngxadmin` under realm `ngx` and add the user to user role `ROLE_ADMIN`
@@ -75,7 +75,7 @@ PROXY_ADDRESS_FORWARDING="true"
 Refer https://stackoverflow.com/questions/53550321/keycloak-gatekeeper-aud-claim-and-client-id-do-not-match
 
 1. add `ngxapi_audience` **Client Scopes** at Realm `ngx` with Audience mapper name: `ngxapi_audience_mapper` and adding `ngxapi` Client under `Included Client Audience`.
-2. for `ngxapp` client, add `ngxapi_audience` at **Client Scopes** tab
+2. for `ngxweb` client, add `ngxapi_audience` at **Client Scopes** tab
 3. for `ngxapi` client, add `ngxapi_audience` at **Client Scopes** tab (for Swagger API Docs)
 
 ---
 
@@ -4,7 +4,7 @@ KeyCloak Testing
 Pre-configured KeyCloak OpenID Connect server for testing.
 
 * **Realm**: ngx
-* **Client ID**: ngxapp, ngxapi
+* **Client ID**: ngxweb, ngxapi
 * **Accounts**:
   * *ROLE_ADMIN*
     1. ngxadmin : ngxadmin
 
@@ -289,7 +289,7 @@
       "ngxapi": [],
       "security-admin-console": [],
       "admin-cli": [],
-      "ngxapp": [],
+      "ngxweb": [],
       "broker": [
         {
           "id": "45bf247f-b7ea-4a17-b196-2f90ac8eccb6",
@@ -637,7 +637,7 @@
     },
     {
       "id": "805899f7-f443-45c8-b404-beb0f50a890a",
-      "clientId": "ngxapp",
+      "clientId": "ngxweb",
       "rootUrl": "http://localhost:4200",
       "adminUrl": "http://localhost:4200",
       "surrogateAuthRequired": false,
@@ -1816,4 +1816,4 @@
   },
   "keycloakVersion": "4.8.3.Final",
   "userManagedAccessAllowed": false
-}
+}