Skip to content

RileySeaburg/k8s-iam

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
README.md
README.md
 
 
allow-dns-egress.yaml
allow-dns-egress.yaml
 
 
allow-smtp-egress.yaml
allow-smtp-egress.yaml
 
 
certificate.yaml
certificate.yaml
 
 
group-cluster-role-binding.yml
group-cluster-role-binding.yml
 
 
keycloak-sendgrid-egress-policy.yaml
keycloak-sendgrid-egress-policy.yaml
 
 
realm-export.json
realm-export.json
 
 
user-cluster-role-binding.yaml
user-cluster-role-binding.yaml
 
 
values.yaml
values.yaml
 
 

Repository files navigation

K8S IAM

Introduction

This project is a keycloak based identity and access management solution for kubernetes.

Prerequisites

Understand

Before deploying, ensure that an egress is created via the keycloak-sendgrid-egress-policy.yaml file. This is required for the keycloak email verification process. If you do not deploy this policy, the keycloak pod will not be able to send emails to users for verification.

I only discoverd this after 14 hours of debugging, so I hope this saves you some time.

About

This project used the Bitnami Keycloak helm chart to deploy keycloak to a kubernetes cluster. The chart is configured to use a postgres database, and the chart is configured to use the default keycloak realm.

Deployment

To deploy, run the following commands:

kubectl create namespace keycloak
kubectl apply -f user-cluster-role-binding.yaml
kubectl apply -f keycloak-sendgrid-egress-policy.yaml
kubectl apply -f group-cluster-role-binding.yaml
kubectl apply -f certificate.yaml

Then run the helmchart command to deploy keycloak:

helm upgrade --install keycloak --namespace keycloak bitnami/keycloak --reuse-values -f values.yaml

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages