Test chart install - minikube without azure values

OasisLMF · May 16, 2024 · 6ae6569 · 6ae6569
1 parent 2b4a0d8
commit 6ae6569
Showing 1 changed file with 13 additions and 5 deletions.
diff --git a/kubernetes/charts/oasis-platform/templates/keycloak.yaml b/kubernetes/charts/oasis-platform/templates/keycloak.yaml
@@ -98,10 +98,12 @@ spec:
           ports:
             - containerPort: {{ .Values.keycloak.port }}
           env:
-            {{- if (.Values.azure).secretProvider }}
+           {{- if (.Values.azure).secretProvider }}
+           {{- if hasKey .Values.azure.secretProvider.secrets "keycloak-cert" }}
             - name: KC_DB_URL_PROPERTIES
               value: "?sslmode=verify-full&sslcert=root.crt"
-            {{- end }}
+           {{- end }}
+           {{- end }}
             - name: KC_LOGLEVEL
               value: DEBUG
             - name: PROXY_ADDRESS_FORWARDING
@@ -176,16 +178,21 @@ spec:
             - name: realm-config
               mountPath: /opt/keycloak/data/import/oasis-realm.json
               subPath: oasis
+            {{- if (.Values.azure).secretProvider }}
+            {{- if hasKey .Values.azure.secretProvider.secrets "keycloak-cert" }}
             - name: azure-keycloak-cert
               mountPath: /opt/keycloak/.postgresql/root.crt
               subPath: keycloak-cert-file
-              readOnly: true  
+              readOnly: true
+            {{- end }}
+            {{- end }}
 
       volumes:
         - name: realm-config
           configMap:
             name: {{ $realmSecretName }}
-{{- if (.Values.azure).secretProvider }}
+    {{- if (.Values.azure).secretProvider }}
+      {{- if hasKey .Values.azure.secretProvider.secrets "keycloak-cert" }}
         - name: azure-keycloak-cert
           csi:
             driver: secrets-store.csi.k8s.io
@@ -194,10 +201,11 @@ spec:
               secretProviderClass: "azure-secret-provider"
               objectName: "keycloak-cert-file"
               objectType: "secret"
+      {{- end }}
         - name: azure-secret-provider
           csi:
             driver: secrets-store.csi.k8s.io
             readOnly: true
             volumeAttributes:
               secretProviderClass: "azure-secret-provider"
-{{- end }}
+    {{- end }}