fix keycloak remote IP detection
This commit is contained in:
parent
5682160eab
commit
b9b87b326d
2 changed files with 6 additions and 7 deletions
|
|
@ -28,10 +28,6 @@ spec:
|
||||||
subPath: ca.crt
|
subPath: ca.crt
|
||||||
readOnly: true
|
readOnly: true
|
||||||
env:
|
env:
|
||||||
- name: KEYCLOAK_ADMIN
|
|
||||||
value: "admin"
|
|
||||||
- name: KEYCLOAK_ADMIN_PASSWORD
|
|
||||||
value: "admin"
|
|
||||||
- name: KC_HTTPS_CERTIFICATE_FILE
|
- name: KC_HTTPS_CERTIFICATE_FILE
|
||||||
value: "/etc/certs/tls.crt"
|
value: "/etc/certs/tls.crt"
|
||||||
- name: KC_HTTPS_CERTIFICATE_KEY_FILE
|
- name: KC_HTTPS_CERTIFICATE_KEY_FILE
|
||||||
|
|
@ -44,10 +40,8 @@ spec:
|
||||||
value: https://auth-next.janky.solutions/
|
value: https://auth-next.janky.solutions/
|
||||||
- name: KC_HOSTNAME
|
- name: KC_HOSTNAME
|
||||||
value: https://auth-next.janky.solutions/
|
value: https://auth-next.janky.solutions/
|
||||||
- name: KC_PROXY
|
|
||||||
value: reencrypt
|
|
||||||
- name: KC_PROXY_HEADERS
|
- name: KC_PROXY_HEADERS
|
||||||
value: forwarded
|
value: xforwarded
|
||||||
- name: KC_DB
|
- name: KC_DB
|
||||||
value: postgres
|
value: postgres
|
||||||
- name: KC_DB_URL
|
- name: KC_DB_URL
|
||||||
|
|
|
||||||
|
|
@ -11,7 +11,12 @@ apiVersion: networking.k8s.io/v1
|
||||||
kind: Ingress
|
kind: Ingress
|
||||||
metadata:
|
metadata:
|
||||||
name: keycloak
|
name: keycloak
|
||||||
|
annotations:
|
||||||
|
cert-manager.io/cluster-issuer: letsencrypt
|
||||||
spec:
|
spec:
|
||||||
|
tls:
|
||||||
|
- hosts: [auth-next.janky.solutions]
|
||||||
|
secretName: auth-next.janky.solutions
|
||||||
rules:
|
rules:
|
||||||
- host: auth-next.janky.solutions
|
- host: auth-next.janky.solutions
|
||||||
http:
|
http:
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue