Skip to content

Commit

Permalink
change script append
Browse files Browse the repository at this point in the history 
Signed-off-by: phac008 <[email protected]>
  • Loading branch information
@phac008
phac008 committed May 24, 2024
1 parent 4c47785 commit 92f8797
Show file tree
Hide file tree
Showing 3 changed files with 81 additions and 81 deletions.
9 changes: 0 additions & 9 deletions platform-apps/charts/keycloak/templates/configmap.json
View file

This file was deleted.

81 changes: 81 additions & 0 deletions platform-apps/charts/keycloak/templates/configmap.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,81 @@
apiVersion: v1
kind: ConfigMap
metadata:
name: {{ .Release.Name }}-configmap
data:
sx-cnp-oss.realm.json: |-
{{ .Files.Get "sx-cnp-oss.realm.json" | indent 4}}
poststart.sh: |-
#!/bin/bash
#
# Bootstrap Backstage Client
#
# creates user, set credentials, adds to group
function create_user() {
username=$1
group=$2
email="$3"
firstName="$4"
lastName="$5"
if [[ -n "$firstName" && -n "$lastName" ]]; then
./kcadm.sh create users -r sx-cnp-oss -s username=$username -s enabled=true -s emailVerified=true -s email="$email" -s firstName=$firstName -s lastName=$lastName
else
./kcadm.sh create users -r sx-cnp-oss -s username=$username -s enabled=true -s emailVerified=true -s email="$email"
fi
./kcadm.sh set-password -r sx-cnp-oss --username $username --new-password test --temporary=false
# fetch user and group id
userid=$(./kcadm.sh get users -r sx-cnp-oss -q username=$username --fields id --format csv --noquotes)
groupid=$(./kcadm.sh get groups -r sx-cnp-oss --noquotes --format csv | grep ",$group" | cut -d, -f1)
# no group membership yet, but add
./kcadm.sh update users/$userid/groups/$groupid -r sx-cnp-oss -s realm=sx-cnp-oss -s userId=$userid -s groupId=$groupid -n
./kcadm.sh get users/$userid/groups -r sx-cnp-oss
}
###### MAIN ######################
sleepSeconds="${1:-30}"
echo "going to wait for initialization/stabilization of server, sleeping for $sleepSeconds"
#sleep $sleepSeconds
sleep 60
cd /opt/keycloak/bin
# login
./kcadm.sh config credentials --realm master --user admin --password admin --server http://localhost:8080
# create realm
./kcadm.sh create realms -f /tmp/sx-cnp-oss.realm.json
#./kcadm.sh create clients -r sx-cnp-oss -f /tmp/backstage.exported.json
#./kcadm.sh create partialImport -r sx-cnp-oss -s ifResourceExists=FAIL -o -f /tmp/sx-cnp-oss.realm.json
# create realm
#./kcadm.sh create realms -s realm=sx-cnp-oss -s enabled=true -o
# disable 'rsa-enc-generated' key for realm to avoid JWKS 'RSA-OAEP' key types which jwt module cannot parse
component_id=$(./kcadm.sh get components -r sx-cnp-oss -q name=rsa-enc-generated --fields id --format csv --noquotes)
./kcadm.sh update components/$component_id -r sx-cnp-oss -s 'config.active=["false"]'
./kcadm.sh update components/$component_id -r sx-cnp-oss -s 'config.enabled=["false"]'
# creates users in various groups
create_user demouser group1 [email protected] demuser sx-cnp-oss
create_user phac users [email protected] Philipp Achmueller
create_user jokl users [email protected] Johannes Kleinlercher
create_user backstageadmin admins [email protected] Backstage Admin
# create client from json placed into container (secret will be generated upon import)
#./kcadm.sh create clients -r sx-cnp-oss -f /tmp/backstage.exported.json
# get secret for 'backstage' that was just generated upon import
clientid=$(./kcadm.sh get clients -r sx-cnp-oss -q clientId=backstage --fields id --format csv --noquotes)
clientsecret=$(./kcadm.sh get clients/$clientid/client-secret -r sx-cnp-oss --fields value --format csv --noquotes)
outfile=/tmp/keycloak.properties
touch $outfile
chmod 666 $outfile
echo "realm=sx-cnp-oss" >> $outfile
echo "clientid=backstage" >> $outfile
echo "clientsecret=$clientsecret" >> $outfile
72 changes: 0 additions & 72 deletions platform-apps/charts/keycloak/templates/poststart.sh
View file

This file was deleted.

0 comments on commit 92f8797

Please sign in to comment.