diff --git a/database-grants/terraform/README.md b/database-grants/terraform/README.md
index 313ab3f..bd1bd05 100644
--- a/database-grants/terraform/README.md
+++ b/database-grants/terraform/README.md
@@ -1,3 +1,8 @@
+# Prerequisites
+
+- Terraform 1.4.6 , please stick to this version for now, tested 1.6.x, it brings issue with the Dititalocean storage as backend
+
+
# How to set up terraform
Find your digitalocean spaces access key and secret key here: https://cloud.digitalocean.com/account/api/spaces?i=d79377
@@ -35,4 +40,8 @@ Apply:
terraform apply -var-file=dev.env.tfvars
```
+# Troubleshooting
+
+## Error: role or object does not exist
+When applying a new schema/grant, sometimes error reports xxx does not exist. But if you run it again, it works. Known issue [here](https://github.com/Greenstand/treetracker-infrastructure/issues/201)
diff --git a/database-grants/terraform/dev/main.tf b/database-grants/terraform/dev/main.tf
index de732df..5e55477 100644
--- a/database-grants/terraform/dev/main.tf
+++ b/database-grants/terraform/dev/main.tf
@@ -81,3 +81,11 @@ module "keycloak_schema" {
postgresql = postgresql.treetracker
}
}
+
+
+module "wallet_schema" {
+ source = "./schemas/wallet"
+ providers = {
+ postgresql = postgresql.treetracker
+ }
+}
diff --git a/database-grants/terraform/dev/other b/database-grants/terraform/dev/other
new file mode 120000
index 0000000..b492abe
--- /dev/null
+++ b/database-grants/terraform/dev/other
@@ -0,0 +1 @@
+../prod/other
\ No newline at end of file
diff --git a/database-grants/terraform/dev/schemas/wallet b/database-grants/terraform/dev/schemas/wallet
new file mode 120000
index 0000000..7918131
--- /dev/null
+++ b/database-grants/terraform/dev/schemas/wallet
@@ -0,0 +1 @@
+../../prod/schemas/wallet/
\ No newline at end of file
diff --git a/database-grants/terraform/prod/extra/main.tf b/database-grants/terraform/prod/extra/main.tf
new file mode 100644
index 0000000..3e575c0
--- /dev/null
+++ b/database-grants/terraform/prod/extra/main.tf
@@ -0,0 +1,128 @@
+resource "postgresql_grant" "wallet-operator-schema" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "wallet"
+ object_type = "schema"
+ privileges = ["USAGE", "CREATE"]
+}
+
+resource "postgresql_grant" "wallet-operator-table" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "wallet"
+ object_type = "table"
+ privileges = ["SELECT", "INSERT", "UPDATE", "DELETE"]
+}
+
+resource "postgresql_grant" "wallet-operator-seq" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "wallet"
+ object_type = "sequence"
+ privileges = ["USAGE", "SELECT"]
+
+}
+
+resource "postgresql_grant" "wallet-operator-schema-public" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "public"
+ object_type = "schema"
+ privileges = ["USAGE", "CREATE"]
+}
+
+resource "postgresql_grant" "wallet-operator-table-public" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "public"
+ object_type = "table"
+ privileges = ["SELECT", "INSERT", "UPDATE", "DELETE"]
+}
+
+
+resource "postgresql_grant" "wallet-operator-seq-public" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "public"
+ object_type = "sequence"
+ privileges = ["USAGE", "SELECT"]
+
+}
+
+
+resource "postgresql_grant" "wallet-operator-schema-herbarium" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "herbarium"
+ object_type = "schema"
+ privileges = ["USAGE", "CREATE"]
+}
+
+resource "postgresql_grant" "wallet-operator-table-herbarium" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "herbarium"
+ object_type = "table"
+ privileges = ["SELECT", "INSERT", "UPDATE", "DELETE"]
+}
+
+
+resource "postgresql_grant" "wallet-operator-seq-herbarium" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "herbarium"
+ object_type = "sequence"
+ privileges = ["USAGE", "SELECT"]
+}
+
+
+resource "postgresql_grant" "wallet-operator-schema-stakeholder" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "stakeholder"
+ object_type = "schema"
+ privileges = ["USAGE", "CREATE"]
+}
+
+resource "postgresql_grant" "wallet-operator-table-stakeholder" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "stakeholder"
+ object_type = "table"
+ privileges = ["SELECT", "INSERT", "UPDATE", "DELETE"]
+}
+
+
+resource "postgresql_grant" "wallet-operator-seq-stakeholder" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "stakeholder"
+ object_type = "sequence"
+ privileges = ["USAGE", "SELECT"]
+}
+
+
+resource "postgresql_grant" "wallet-operator-schema-treetracker" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "treetracker"
+ object_type = "schema"
+ privileges = ["USAGE", "CREATE"]
+}
+
+resource "postgresql_grant" "wallet-operator-table-treetracker" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "treetracker"
+ object_type = "table"
+ privileges = ["SELECT", "INSERT", "UPDATE", "DELETE"]
+}
+
+
+resource "postgresql_grant" "wallet-operator-seq-treetracker" {
+ database = "treetracker"
+ role = "wallet_operator"
+ schema = "treetracker"
+ object_type = "sequence"
+ privileges = ["USAGE", "SELECT"]
+}
diff --git a/database-grants/terraform/prod/schemas/query/provider.tf b/database-grants/terraform/prod/extra/provider.tf
similarity index 100%
rename from database-grants/terraform/prod/schemas/query/provider.tf
rename to database-grants/terraform/prod/extra/provider.tf
diff --git a/database-grants/terraform/prod/main.tf b/database-grants/terraform/prod/main.tf
index de304f0..9a55a88 100644
--- a/database-grants/terraform/prod/main.tf
+++ b/database-grants/terraform/prod/main.tf
@@ -56,13 +56,6 @@ module "messaging_schema" {
}
}
-module "query_schema" {
- source = "./schemas/query"
- providers = {
- postgresql = postgresql.treetracker
- }
-}
-
module "stakeholder_schema" {
source = "./schemas/stakeholder"
providers = {
@@ -83,3 +76,20 @@ module "contracts_schema" {
postgresql = postgresql.treetracker
}
}
+
+module "keycloak_schema" {
+ source = "./schemas/keycloak"
+ providers = {
+ postgresql = postgresql.treetracker
+ }
+}
+
+module "extra" {
+ source = "./extra"
+ providers = {
+ postgresql = postgresql.treetracker
+ }
+ depends_on = [
+ module.wallet_schema
+ ]
+}
diff --git a/database-grants/terraform/prod/prod.env.tfvars b/database-grants/terraform/prod/prod.env.tfvars
index fc6f324..daff614 100644
--- a/database-grants/terraform/prod/prod.env.tfvars
+++ b/database-grants/terraform/prod/prod.env.tfvars
@@ -1,2 +1,2 @@
-port = "1111"
-host = "localhost"
+port = "25060"
+host = "treetracker-cluster-do-user-8540031-0.b.db.ondigitalocean.com"
diff --git a/database-grants/terraform/prod/read-only-user.tf b/database-grants/terraform/prod/read-only-user.tf
index 4946ccf..7ee2e59 100644
--- a/database-grants/terraform/prod/read-only-user.tf
+++ b/database-grants/terraform/prod/read-only-user.tf
@@ -11,33 +11,6 @@ resource "postgresql_role" "readonlyuser_human" {
password = random_password.readonlyuser_password.result
}
-resource "postgresql_grant" "readonlyyuser_select_field" {
- provider = "postgresql.treetracker"
- database = "treetracker"
- role = "readonlyuser"
- schema = "field"
- object_type = "table"
- privileges = ["SELECT"]
-}
-
-resource "postgresql_grant" "readonlyyuser_usage_field" {
- provider = "postgresql.treetracker"
- database = "treetracker"
- role = "readonlyuser"
- schema = "field"
- object_type = "schema"
- privileges = ["USAGE"]
-}
-
-resource "postgresql_grant" "readonlyyuser_sequence_field" {
- provider = "postgresql.treetracker"
- database = "treetracker"
- role = "readonlyuser"
- schema = "field"
- object_type = "sequence"
- privileges = ["SELECT"]
-}
-
resource "postgresql_grant" "readonlyyuser_select_public" {
provider = "postgresql.treetracker"
database = "treetracker"
@@ -161,7 +134,7 @@ resource "postgresql_grant" "readonlyyuser_sequence_treetracker" {
role = "readonlyuser"
schema = "treetracker"
object_type = "sequence"
- privileges = ["SELECT"]
+ privileges = ["SELECT", "USAGE"]
}
resource "postgresql_grant" "readonlyyuser_usage_wallet" {
@@ -188,7 +161,7 @@ resource "postgresql_grant" "readonlyyuser_sequence_wallet" {
role = "readonlyuser"
schema = "wallet"
object_type = "sequence"
- privileges = ["SELECT"]
+ privileges = ["SELECT", "USAGE"]
}
resource "postgresql_grant" "readonlyyuser_usage_webmap" {
@@ -206,7 +179,7 @@ resource "postgresql_grant" "readonlyyuser_sequence_webmap" {
role = "readonlyuser"
schema = "webmap"
object_type = "sequence"
- privileges = ["SELECT"]
+ privileges = ["SELECT", "USAGE"]
}
resource "postgresql_grant" "readonlyyuser_usage_airflow" {
@@ -288,7 +261,7 @@ resource "postgresql_grant" "readonlyuser_sequence_earnings" {
role = "readonlyuser"
schema = "earnings"
object_type = "sequence"
- privileges = ["SELECT"]
+ privileges = ["SELECT", "USAGE"]
}
@@ -311,7 +284,7 @@ resource "postgresql_default_privileges" "read_only_reporting_sequence" {
owner = "doadmin"
object_type = "sequence"
- privileges = ["SELECT"]
+ privileges = ["SELECT", "USAGE"]
}
resource "postgresql_default_privileges" "read_only_reporting_tables" {
diff --git a/database-grants/terraform/prod/schemas/query/main.tf b/database-grants/terraform/prod/schemas/query/main.tf
deleted file mode 100644
index d636a82..0000000
--- a/database-grants/terraform/prod/schemas/query/main.tf
+++ /dev/null
@@ -1,88 +0,0 @@
-
-module "microservice_schema" {
- source = "./../../modules/microservice_schema"
- schema = "query"
-}
-
-resource "postgresql_grant" "query_messaging_schema" {
- database = "treetracker"
- role = "s_query"
- schema = "messaging"
- object_type = "schema"
- privileges = ["USAGE"]
-}
-
-resource "postgresql_grant" "query_messaging_tables" {
- database = "treetracker"
- role = "s_query"
- schema = "messaging"
- object_type = "table"
- privileges = ["SELECT"]
-}
-
-resource "postgresql_grant" "query_treetracker_schema" {
- database = "treetracker"
- role = "s_query"
- schema = "treetracker"
- object_type = "schema"
- privileges = ["USAGE"]
-}
-
-resource "postgresql_grant" "query_treetracker_tables" {
- database = "treetracker"
- role = "s_query"
- schema = "treetracker"
- object_type = "table"
- privileges = ["SELECT"]
-}
-
-resource "postgresql_grant" "query_stakeholder_schema" {
- database = "treetracker"
- role = "s_query"
- schema = "stakeholder"
- object_type = "schema"
- privileges = ["USAGE"]
-}
-
-resource "postgresql_grant" "query_stakeholder_tables" {
- database = "treetracker"
- role = "s_query"
- schema = "stakeholder"
- object_type = "table"
- privileges = ["SELECT"]
-}
-
-resource "postgresql_grant" "query_regions_schema" {
- database = "treetracker"
- role = "s_query"
- schema = "regions"
- object_type = "schema"
- privileges = ["USAGE"]
-}
-
-resource "postgresql_grant" "query_regions_tables" {
- database = "treetracker"
- role = "s_query"
- schema = "regions"
- object_type = "table"
- privileges = ["SELECT"]
-}
-
-resource "postgresql_grant" "query_public_schema" {
- database = "treetracker"
- role = "s_query"
- schema = "public"
- object_type = "schema"
- privileges = ["USAGE"]
-}
-
-resource "postgresql_grant" "query_public_function" {
- database = "treetracker"
- role = "s_query"
- schema = "public"
- object_type = "function"
- privileges = ["EXECUTE"]
-}
-
-
-
diff --git a/database-grants/terraform/prod/schemas/wallet/main.tf b/database-grants/terraform/prod/schemas/wallet/main.tf
index b2a0855..30dcb6c 100644
--- a/database-grants/terraform/prod/schemas/wallet/main.tf
+++ b/database-grants/terraform/prod/schemas/wallet/main.tf
@@ -3,5 +3,3 @@ module "microservice_schema" {
source = "./../../modules/microservice_schema"
schema = "wallet"
}
-
-
diff --git a/keycloak/README.md b/keycloak/README.md
new file mode 100644
index 0000000..4705d51
--- /dev/null
+++ b/keycloak/README.md
@@ -0,0 +1,30 @@
+# The script to deploy Keycloak on Greenstand Kubernetes cluster
+
+## Prerequisites
+
+- Node.js
+- kubectl ?
+
+### To install prerequisites
+
+```bash
+# install ansible
+pip3 install ansible
+
+# install k8s plugin
+ansible-galaxy collection install community.kubernetes
+```
+
+## Usage
+
+```bash
+chmod +x deploy.sh
+./deploy.sh
+```
+
+
+# Troubleshooting
+
+## Error: "changesets check sum: Validation Failed"
+
+This is because of the table: `databasechangelog` in the database, can be solved by cleaning up the whole schema tables.;
diff --git a/keycloak/deploy.sh b/keycloak/deploy.sh
new file mode 100755
index 0000000..32e8cdf
--- /dev/null
+++ b/keycloak/deploy.sh
@@ -0,0 +1,27 @@
+#!/bin/bash
+# This script is used to deploy the keycloak to Greenstand k8s cluster
+
+# Prompt user to choose the environment
+echo "Please choose the environment to deploy the keycloak"
+echo "1. dev"
+echo "2. test"
+echo "3. prod"
+read -p "Enter your choice: " choice
+deploy_env=$(node -e 'console.log(["dev", "test", "prod"][process.argv[1] - 1])' $choice)
+echo "The environment to deploy is: $(echo ${deploy_env})"
+#TODO
+read -p "Enter any key to continue: " key
+
+# check the k8s cluster
+echo "Checking the k8s cluster"
+current_k8s_cluster=$(kubectl config current-context)
+echo "The current k8s cluster is: ${current_k8s_cluster}"
+#TODO here we use the name in config/context, it might be problematic
+# maybe a cluster configmap is good to have: https://stackoverflow.com/questions/38242062/how-to-get-kubernetes-cluster-name-from-k8s-api
+is_cluster_ok=$(node ./lib/js/checkK8sClusterNameByEnv.js ${deploy_env} ${current_k8s_cluster})
+if [ "$is_cluster_ok" != "true" ]; then
+ echo "The current k8s cluster is wrong, please switch to the correct cluster"
+ exit 1
+fi
+
+ansible-playbook lib/playbook.yml --extra-vars "deploy_env=${deploy_env}"
diff --git a/keycloak/lib/docker/Dockerfile b/keycloak/lib/docker/Dockerfile
new file mode 100644
index 0000000..ac25522
--- /dev/null
+++ b/keycloak/lib/docker/Dockerfile
@@ -0,0 +1,23 @@
+#
+#RUN /opt/keycloak/bin/kc.sh build
+#
+#FROM quay.io/keycloak/keycloak:22.0.4
+#ENTRYPOINT ["/opt/keycloak/bin/kc.sh"]
+
+FROM quay.io/keycloak/keycloak:22.0.4 as builder
+ENV KC_HEALTH_ENABLED=true
+ENV KC_METRICS_ENABLED=true
+
+# Configure a database vendor
+ENV KC_DB=postgres
+
+WORKDIR /opt/keycloak
+
+# Copy the theme
+COPY ./themes/treetracker /opt/keycloak/themes/treetracker
+#RUN /opt/keycloak/bin/kc.sh build
+
+FROM quay.io/keycloak/keycloak:latest
+COPY --from=builder /opt/keycloak/ /opt/keycloak/
+
+ENTRYPOINT ["/opt/keycloak/bin/kc.sh", "start-dev"]
diff --git a/keycloak/lib/docker/themes/treetracker/login/resources/css/treetracker.css b/keycloak/lib/docker/themes/treetracker/login/resources/css/treetracker.css
new file mode 100644
index 0000000..9647e60
--- /dev/null
+++ b/keycloak/lib/docker/themes/treetracker/login/resources/css/treetracker.css
@@ -0,0 +1,35 @@
+.login-pf body {
+ /*background: url(https://treetracker-production-images.s3.eu-central-1.amazonaws.com/2023.09.23.14.04.00_0.45559833333333327_109.32892366666664_5e5b8f08-2f3f-46f7-adbe-967030e48266_IMG_20230829_091903_642222451085378253.jpg) no-repeat center center fixed;*/
+ /*background: url(https://treetracker-production-images.s3.eu-central-1.amazonaws.com/2023.04.21.03.36.20_8.485640049999999_-13.254117873333334_27928e01-6f29-4ac0-bee2-df494f3a1363_IMG_20230412_170116_1704432758494134189.jpg) no-repeat left 35%;*/
+ background: url(https://treetracker-production-images.s3.eu-central-1.amazonaws.com/2023.08.22.16.08.58_0.5209260000000022_109.31300000000013_12dad55b-8dac-4224-93ba-de8631460ac7_IMG_20230822_151206_4872363611904227603.jpg) no-repeat left 35%;
+ background-size: cover;
+}
+div.kc-logo-text {
+ /*background-image: url(https://map.treetracker.org/images/treetracker_logo.svg);*/
+ background-image: url(https://map.treetracker.org/images/treetracker_logo_white.svg);
+}
+:root {
+ --pf-global--primary-color--100: #86C232;
+ --pf-global--primary-color--200: #a6dc5a;
+ --pf-global--primary-color--dark-100: #86C232;
+ --pf-global--primary-color--light-100: #a6dc5a;
+ --pf-global--active-color--100: #68a119;
+ --pf-global--active-color--200: #b9ef6d;
+ --pf-global--active-color--300: #89e00f;
+ --pf-global--active-color--400: #80aa44;
+ --pf-global--link--Color: #61901f;
+ --pf-global--link--Color--hover: #547722;
+ --pf-global--link--Color--light: #b4ef62;
+ --pf-global--link--Color--light--hover: #b7e973;
+ --pf-global--link--Color--dark: #679822;
+ --pf-global--link--Color--dark--hover: #5e9413;
+ --pf-global--default-color--100: #86C232;
+ --pf-global--default-color--200: #a6dc5a;
+ --pf-global--default-color--300: #86C232;
+}
+@media (max-width: 767px) {
+ .login-pf-page .card-pf {
+ margin-left: 20px;
+ margin-right: 20px;
+ }
+}
diff --git a/keycloak/lib/docker/themes/treetracker/login/resources/js/treetracker.js b/keycloak/lib/docker/themes/treetracker/login/resources/js/treetracker.js
new file mode 100644
index 0000000..b25b3e5
--- /dev/null
+++ b/keycloak/lib/docker/themes/treetracker/login/resources/js/treetracker.js
@@ -0,0 +1,18 @@
+// javascript to append a new div to body
+var newDiv = document.createElement("div");
+newDiv.innerHTML = `
+
+`;
+
+// Append new div to body when the DOM is loaded
+document.addEventListener("DOMContentLoaded", function(event) {
+ document.body.appendChild(newDiv);
+});
diff --git a/keycloak/lib/docker/themes/treetracker/login/theme.properties b/keycloak/lib/docker/themes/treetracker/login/theme.properties
new file mode 100644
index 0000000..ee8200a
--- /dev/null
+++ b/keycloak/lib/docker/themes/treetracker/login/theme.properties
@@ -0,0 +1,5 @@
+parent=keycloak
+import=common/keycloak
+styles=web_modules/@fontawesome/fontawesome-free/css/icons/all.css web_modules/@patternfly/react-core/dist/styles/base.css web_modules/@patternfly/react-core/dist/styles/app.css node_modules/patternfly/dist/css/patternfly.min.css node_modules/patternfly/dist/css/patternfly-additions.min.css css/login.css css/treetracker.css
+scripts=js/treetracker.js
+
diff --git a/keycloak/lib/js/checkK8sClusterNameByEnv.js b/keycloak/lib/js/checkK8sClusterNameByEnv.js
new file mode 100644
index 0000000..3b747d8
--- /dev/null
+++ b/keycloak/lib/js/checkK8sClusterNameByEnv.js
@@ -0,0 +1,17 @@
+// usage: node checkK8sClusterNameByEnv.js
+// output: true|false
+const env = process.argv[2];
+const clusterName = process.argv[3];
+
+// name array, can add more if needed, in case setting up the config varies.
+const clusterNames = {
+ dev: ['do-sfo2-dev-k8s-treetracker'],
+ test: ['do-sfo2-test-k8s-treetracker'],
+ prod: ['do-nyc1-prod-k8s-treetracker'],
+};
+
+if (clusterNames[env]?.includes(clusterName)) {
+ console.log('true');
+}else {
+ console.log('false');
+}
diff --git a/keycloak/lib/kubernetes/base/deployment-raw-client.yaml b/keycloak/lib/kubernetes/base/deployment-raw-client.yaml
new file mode 100644
index 0000000..776551d
--- /dev/null
+++ b/keycloak/lib/kubernetes/base/deployment-raw-client.yaml
@@ -0,0 +1,288 @@
+# deployment a test client for keycloak
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+ name: treetracker-keycloak-raw-client
+ namespace: keycloak-next
+spec:
+ replicas: 1
+ selector:
+ matchLabels:
+ app: treetracker-keycloak-raw-client
+ template:
+ metadata:
+ labels:
+ app: treetracker-keycloak-raw-client
+ spec:
+ containers:
+ - name: treetracker-keycloak
+ image: node
+ command:
+ - "sh"
+ - "-c"
+ - |
+ cd /
+ mkdir raw-client
+ cd raw-client
+ cat < index.html
+
+
+
+
+
+ Treetracker Raw Client!!
+
+
+
+
+
+
+
+
+
+
+
+ Treetracker Raw Client
+
+
+
+
+
Welcome:
+
User Info
+
+
+ | username: |
+ |
+
+
+ | email: |
+ |
+
+
+ | roles: |
+
+
+ |
+
+
+ | user id: |
+
+ |
+
+
+
Treetracker Raw Client
+
+
+
+
+
+
+
diff --git a/sealed-secrets/keycloak-secret-sealed-secret.yaml b/sealed-secrets/keycloak-secret-sealed-secret.yaml
new file mode 100644
index 0000000..538a8ad
--- /dev/null
+++ b/sealed-secrets/keycloak-secret-sealed-secret.yaml
@@ -0,0 +1,15 @@
+apiVersion: bitnami.com/v1alpha1
+kind: SealedSecret
+metadata:
+ creationTimestamp: null
+ name: keycloak-secret
+ namespace: keycloak-next
+spec:
+ encryptedData:
+ admin_password: AgBUBQAfA67jDNjdb7bc8zNLHnTBR/UAd5U1jxQTprCjxrNA1RAgzJhQCwQGyXdnKQsTiZcB+AzvvJcj4Q1fbrrQTlyZ8lRLCaydkUPIyjUDUTp/RHZ76kncdQ0aU8Rs2Io/sDbXNO3PA0uPFS9u+4dHTboAUTKr4IWK/Oeke2aX3i6LA6cZOfAjfKDEjHcDWkXecT+dY0vX1b0qWhtKezI1i43ylPMF7ilHcJXsaXvec8WCz3irKzLsV1iobBgD8UnVjbpgX/DUlLnnBd/TvTmg1hPlzhJqkwDZ8GMaEg4gUfxoZMHwoYKl15lM3XEF0iyjqd45k39Lo6hdv2fCCXVfx1J9tGXC1Etp0l8DQqLHlCoELxXVDgx6t7RDpwBb5cvTRONW7mR2qLw8JBC0tdKK0Uix9mJyB0OyRxwUkMsUV3c4WrdDt1AUv6+kPsSc64rm3hcMd2LpXZfc37lb0UPNDPc2xLoCitfl3AeJ50wP9G2m/FfyW8JBa3SBoymq0cnmFXm8yfC5yyWa1rqH0CmNKl5AnOhCKia45cH6r4OKGBmnbDZ7wSw4+QPTB9toXYJfqts0iPNR4TiE+OBzFIZ8W37jp/cbX6gKAz1h7ONKYx/Vd5lzHdyw0spo+wahXLZH3fIOT25BmSRympsNm/s+z5zykXp3TCP+HZoTyO1mXlONsgqYyXqU7te3jyvQNwed4QWWP+d2JbqMqS4=
+ template:
+ metadata:
+ creationTimestamp: null
+ name: keycloak-secret
+ namespace: keycloak-next
+