keycloak-advanced

Chart

Data

Advanced

Updated 2 days ago

Versions

Browse all available versions of the Helm chart.

Updated

App version

Chart version

Images Included

Vulnerabilities

Jun 23, 2026

26.4.60.1.0

keycloak-advanced latest

keycloak-advanced 0.1.0
Chart
Data
Advanced

Updated 2 days ago

App Version26.4.6

Chart Version0.1.0

Vulnerabilities

Images included

keycloak-advanced latest

Review the defaults in the

values.yaml

file

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314

global:
  imageRegistry: reg.mini.dev
  imagePullSecrets:
    - minimus-registry
  defaultStorageClass: ""
  security:
    allowInsecureImages: true
  compatibility:
    openshift:
      adaptSecurityContext: auto
    omitEmptySeLinuxOptions: false
keycloak:
  kubeVersion: ""
  apiVersions: []
  nameOverride: ""
  fullnameOverride: ""
  namespaceOverride: ""
  commonLabels: {}
  commonAnnotations: {}
  clusterDomain: cluster.local
  extraDeploy: []
  diagnosticMode:
    enabled: false
    command:
      - sleep
    args:
      - infinity
  useHelmHooks: true
  usePasswordFiles: true
  image:
    registry: reg.mini.dev
    repository: keycloak-advanced
    tag: latest
    digest: ""
    pullPolicy: Always
    pullSecrets:
      - minimus-registry
    debug: false
  auth:
    adminUser: user
    adminPassword: ""
    existingSecret: ""
    passwordSecretKey: ""
    annotations: {}
  production: false
  tls:
    enabled: false
    usePemCerts: false
    autoGenerated:
      enabled: true
      engine: helm
      certManager:
        existingIssuer: ""
        existingIssuerKind: ""
        keySize: 2048
        keyAlgorithm: RSA
        duration: 2160h
        renewBefore: 360h
    existingSecret: ""
    certFilename: tls.crt
    certKeyFilename: tls.key
    keystoreFilename: keycloak.keystore.jks
    truststoreFilename: keycloak.truststore.jks
    keystorePassword: ""
    truststorePassword: ""
    passwordsSecret: ""
  trustedCertsExistingSecret: ""
  replicaCount: 1
  containerPorts:
    http: 8080
    https: 8443
  livenessProbe:
    enabled: true
    initialDelaySeconds: 300
    periodSeconds: 20
    timeoutSeconds: 10
    failureThreshold: 6
    successThreshold: 1
  readinessProbe:
    enabled: true
    initialDelaySeconds: 60
    periodSeconds: 10
    timeoutSeconds: 5
    failureThreshold: 6
    successThreshold: 1
  startupProbe:
    enabled: false
    initialDelaySeconds: 60
    periodSeconds: 10
    timeoutSeconds: 5
    failureThreshold: 30
    successThreshold: 1
  customLivenessProbe: {}
  customReadinessProbe: {}
  customStartupProbe: {}
  resources: {}
  podSecurityContext:
    enabled: true
    fsGroupChangePolicy: Always
    sysctls: []
    supplementalGroups: []
    fsGroup: 1001
  containerSecurityContext:
    enabled: true
    seLinuxOptions: {}
    runAsUser: 1001
    runAsGroup: 1001
    runAsNonRoot: true
    privileged: false
    readOnlyRootFilesystem: true
    allowPrivilegeEscalation: false
    capabilities:
      drop:
        - ALL
    seccompProfile:
      type: RuntimeDefault
  automountServiceAccountToken: false
  hostAliases: []
  hostNetwork: false
  hostIPC: false
  labels: {}
  annotations: {}
  podLabels: {}
  podAnnotations: {}
  podAffinityPreset: ""
  podAntiAffinityPreset: soft
  nodeAffinityPreset:
    type: ""
    key: ""
    values: []
  affinity: {}
  nodeSelector: {}
  tolerations: []
  topologySpreadConstraints: []
  priorityClassName: ""
  schedulerName: ""
  terminationGracePeriodSeconds: ""
  updateStrategy:
    type: RollingUpdate
    rollingUpdate: {}
  extraVolumeMounts: []
  extraVolumes: []
  sidecars: []
  initContainers: []
  pdb:
    create: true
    minAvailable: ""
    maxUnavailable: ""
  extraPodSpec: {}
  networkPolicy:
    enabled: true
    allowExternal: true
    allowExternalEgress: true
    extraIngress: []
    extraEgress: []
    ingressNSMatchLabels: {}
    ingressNSPodMatchLabels: {}
  service:
    type: ClusterIP
    ports:
      http: 8080
      https: 8443
    nodePorts:
      http: ""
      https: ""
    clusterIP: ""
    labels: {}
    annotations: {}
    loadBalancerClass: ""
    loadBalancerIP: ""
    externalTrafficPolicy: Cluster
    loadBalancerSourceRanges: []
    extraPorts: []
    sessionAffinity: None
    sessionAffinityConfig: {}
    headless:
      annotations: {}
  persistence:
    enabled: true
    volumeName: data
    existingClaim: ""
    mountPath: /bitnami/keycloak
    subPath: ""
    storageClass: ""
    accessModes:
      - ReadWriteOnce
    size: 8Gi
    annotations: {}
    labels: {}
    selector: {}
    dataSource: {}
  persistentVolumeClaimRetentionPolicy:
    enabled: false
    whenScaled: Retain
    whenDeleted: Retain
  extraEnvVars: []
  extraEnvVarsCM: ""
  extraEnvVarsSecret: ""
  command: []
  args: []
  lifecycleHooks: {}
  configuration: ""
  keycloakConfigCli:
    enabled: false
    # image:
    #   registry: reg.mini.dev
    #   repository: keycloak-config-cli-advanced
    #   tag: latest
    #   digest: ""
    #   pullPolicy: Always
    #   pullSecrets:
    #     - minimus-registry
    resources: {}
    extraEnvVars: []
    extraEnvVarsCM: ""
    extraEnvVarsSecret: ""
    extraVolumes: []
    extraVolumeMounts: []
    initContainers: []
    sidecars: []
    configuration: {}
    existingConfigmap: ""
    cleanupAfterFinished:
      enabled: false
      seconds: 600
  defaultInitContainers:
    prepareWriteDirs:
      enabled: true
      containerSecurityContext:
        enabled: true
        seLinuxOptions: {}
        runAsUser: 1001
        runAsGroup: 1001
        runAsNonRoot: true
        privileged: false
        readOnlyRootFilesystem: true
        allowPrivilegeEscalation: false
        capabilities:
          drop:
            - ALL
        seccompProfile:
          type: RuntimeDefault
      resourcesPreset: nano
      resources: {}
  postgresql:
    enabled: false
  externalDatabase:
    host: ""
    port: 5432
    user: bn_keycloak
    database: bitnami_keycloak
    schema: public
    password: ""
    existingSecret: ""
    existingSecretUserKey: ""
    existingSecretPasswordKey: ""
    annotations: {}
    extraParams: ""
  serviceAccount:
    create: true
    name: ""
    automountServiceAccountToken: false
    annotations: {}
  rbac:
    create: false
    rules: []
  psp:
    create: false
  metrics:
    enabled: false
postgresql:
  enabled: false
  global:
    imageRegistry: reg.mini.dev
    imagePullSecrets:
      - minimus-registry
    security:
      allowInsecureImages: true
  postgresql:
    global:
      imageRegistry: ""
      imagePullSecrets:
        - minimus-registry
      compatibility:
        openshift:
          adaptSecurityContext: auto
    image:
      registry: reg.mini.dev
      repository: postgresql-advanced
      tag: latest
      digest: ""
      pullPolicy: Always
      pullSecrets:
        - minimus-registry
      debug: false
    auth:
      enablePostgresUser: true
      postgresPassword: ""
      username: bn_keycloak
      password: ""
      database: bitnami_keycloak
      existingSecret: ""
      secretKeys:
        adminPasswordKey: postgres-password
        userPasswordKey: password
        replicationPasswordKey: replication-password
      usePasswordFiles: true
    architecture: standalone
    primary:
      persistence:
        enabled: true
        size: 8Gi
    metrics:
      enabled: false

This page is available on desktop