--- apiVersion: v1 kind: ServiceAccount metadata: annotations: app.quarkus.io/quarkus-version: 3.8.4 app.quarkus.io/vcs-uri: https://github.com/keycloak/keycloak.git app.quarkus.io/build-timestamp: 2024-05-08 - 06:40:25 +0000 labels: app.kubernetes.io/name: keycloak-operator app.kubernetes.io/version: 24.0.4 app.kubernetes.io/managed-by: quarkus name: keycloak-operator --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: keycloak-operator-clusterrole rules: - apiGroups: - config.openshift.io resources: - ingresses verbs: - get --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: keycloakrealmimportcontroller-cluster-role rules: - apiGroups: - k8s.keycloak.org resources: - keycloakrealmimports - keycloakrealmimports/status - keycloakrealmimports/finalizers verbs: - get - list - watch - patch - update - create - delete - apiGroups: - "" resources: - secrets verbs: - get - list - watch - patch - update - delete - create --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: keycloakcontroller-cluster-role rules: - apiGroups: - k8s.keycloak.org resources: - keycloaks - keycloaks/status - keycloaks/finalizers verbs: - get - list - watch - patch - update - create - delete - apiGroups: - "" resources: - services verbs: - get - list - watch - patch - update - delete - create - apiGroups: - apps resources: - statefulsets verbs: - get - list - watch - patch - update - delete - create - apiGroups: - "" resources: - services verbs: - get - list - watch - patch - update - delete - create - apiGroups: - networking.k8s.io resources: - ingresses verbs: - get - list - watch - patch - update - delete - create - apiGroups: - "" resources: - secrets verbs: - get - list - watch - delete - create - patch --- apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: app.kubernetes.io/name: keycloak-operator name: keycloak-operator-clusterrole-binding roleRef: kind: ClusterRole apiGroup: rbac.authorization.k8s.io name: keycloak-operator-clusterrole subjects: - kind: ServiceAccount name: keycloak-operator namespace: keycloak --- apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: name: keycloak-operator-role rules: - apiGroups: - apps resources: - statefulsets verbs: - get - list - watch - create - delete - patch - update - apiGroups: - "" resources: - configmaps verbs: - get - list - watch - apiGroups: - "" resources: - secrets - services verbs: - get - list - watch - create - delete - patch - update - apiGroups: - "" resources: - pods verbs: - list - apiGroups: - batch resources: - jobs verbs: - get - list - watch - create - delete - patch - update - apiGroups: - networking.k8s.io resources: - ingresses verbs: - get - list - watch - create - delete - patch - update --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: labels: app.kubernetes.io/name: keycloak-operator name: keycloak-operator-role-binding roleRef: kind: Role apiGroup: rbac.authorization.k8s.io name: keycloak-operator-role subjects: - kind: ServiceAccount name: keycloak-operator --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: name: keycloakrealmimportcontroller-role-binding roleRef: kind: ClusterRole apiGroup: rbac.authorization.k8s.io name: keycloakrealmimportcontroller-cluster-role subjects: - kind: ServiceAccount name: keycloak-operator --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: name: keycloakcontroller-role-binding roleRef: kind: ClusterRole apiGroup: rbac.authorization.k8s.io name: keycloakcontroller-cluster-role subjects: - kind: ServiceAccount name: keycloak-operator --- apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: labels: app.kubernetes.io/name: keycloak-operator app.kubernetes.io/version: 24.0.4 name: keycloak-operator-view roleRef: kind: ClusterRole apiGroup: rbac.authorization.k8s.io name: view subjects: - kind: ServiceAccount name: keycloak-operator --- apiVersion: v1 kind: Service metadata: annotations: app.quarkus.io/quarkus-version: 3.8.4 app.quarkus.io/vcs-uri: https://github.com/keycloak/keycloak.git app.quarkus.io/build-timestamp: 2024-05-08 - 06:40:25 +0000 labels: app.kubernetes.io/name: keycloak-operator app.kubernetes.io/version: 24.0.4 app.kubernetes.io/managed-by: quarkus name: keycloak-operator spec: ports: - name: http port: 80 protocol: TCP targetPort: 8080 selector: app.kubernetes.io/name: keycloak-operator type: ClusterIP --- apiVersion: apps/v1 kind: Deployment metadata: annotations: app.quarkus.io/quarkus-version: 3.8.4 app.quarkus.io/vcs-uri: https://github.com/keycloak/keycloak.git app.quarkus.io/build-timestamp: 2024-05-08 - 06:40:25 +0000 labels: app.kubernetes.io/name: keycloak-operator app.kubernetes.io/version: 24.0.4 app.kubernetes.io/managed-by: quarkus name: keycloak-operator spec: replicas: 1 selector: matchLabels: app.kubernetes.io/name: keycloak-operator template: metadata: annotations: app.quarkus.io/quarkus-version: 3.8.4 app.quarkus.io/vcs-uri: https://github.com/keycloak/keycloak.git app.quarkus.io/build-timestamp: 2024-05-08 - 06:40:25 +0000 labels: app.kubernetes.io/managed-by: quarkus app.kubernetes.io/name: keycloak-operator app.kubernetes.io/version: 24.0.4 spec: containers: - env: - name: KUBERNETES_NAMESPACE valueFrom: fieldRef: fieldPath: metadata.namespace - name: RELATED_IMAGE_KEYCLOAK value: quay.io/keycloak/keycloak:24.0.4 image: quay.io/keycloak/keycloak-operator:24.0.4 imagePullPolicy: Always livenessProbe: failureThreshold: 3 httpGet: path: /q/health/live port: 8080 scheme: HTTP initialDelaySeconds: 5 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 10 name: keycloak-operator ports: - containerPort: 8080 name: http protocol: TCP readinessProbe: failureThreshold: 3 httpGet: path: /q/health/ready port: 8080 scheme: HTTP initialDelaySeconds: 5 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 10 startupProbe: failureThreshold: 3 httpGet: path: /q/health/started port: 8080 scheme: HTTP initialDelaySeconds: 5 periodSeconds: 10 successThreshold: 1 timeoutSeconds: 10 serviceAccountName: keycloak-operator