Skip to content

Commit

Permalink
operator keycloak-permissions-operator (1.4.1)
Browse files Browse the repository at this point in the history
  • Loading branch information
@computate
computate authored May 7, 2024
1 parent 0f33b47 commit 0d82531
Show file tree
Hide file tree
Showing 6 changed files with 763 additions and 0 deletions.
23 changes: 23 additions & 0 deletions ....1/manifests/keycloak-permissions-operator-controller-manager-metrics-svc_v1_service.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
apiVersion: v1
kind: Service
metadata:
creationTimestamp: null
labels:
app.kubernetes.io/component: kube-rbac-proxy
app.kubernetes.io/created-by: keycloak-permissions-operator
app.kubernetes.io/instance: controller-manager-metrics-svc
app.kubernetes.io/managed-by: kustomize
app.kubernetes.io/name: service
app.kubernetes.io/part-of: keycloak-permissions-operator
control-plane: controller-manager
name: keycloak-permissions-operator-controller-manager-metrics-svc
spec:
ports:
- name: https
port: 8443
protocol: TCP
targetPort: https
selector:
control-plane: controller-manager
status:
loadBalancer: {}
17 changes: 17 additions & 0 deletions ...eycloak-permissions-operator-metrics-reader_rbac.authorization.k8s.io_v1_clusterrole.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
creationTimestamp: null
labels:
app.kubernetes.io/component: kube-rbac-proxy
app.kubernetes.io/created-by: keycloak-permissions-operator
app.kubernetes.io/instance: metrics-reader
app.kubernetes.io/managed-by: kustomize
app.kubernetes.io/name: clusterrole
app.kubernetes.io/part-of: keycloak-permissions-operator
name: keycloak-permissions-operator-metrics-reader
rules:
- nonResourceURLs:
- /metrics
verbs:
- get
344 changes: 344 additions & 0 deletions ...issions-operator/1.4.1/manifests/keycloak-permissions-operator.clusterserviceversion.yaml
View file

Large diffs are not rendered by default.

295 changes: 295 additions & 0 deletions ...permissions-operator/1.4.1/manifests/keycloak.nerc.mghpcc.org_keycloakauthorizations.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,295 @@
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
creationTimestamp: null
name: keycloakauthorizations.keycloak.nerc.mghpcc.org
spec:
group: keycloak.nerc.mghpcc.org
names:
kind: KeycloakAuthorization
listKind: KeycloakAuthorizationList
plural: keycloakauthorizations
singular: keycloakauthorization
scope: Namespaced
versions:
- name: v1
schema:
openAPIV3Schema:
description: |
KeycloakAuthorization is the Schema for the keycloakauthorizations API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type: string
metadata:
type: object
spec:
description: Spec defines the desired state of KeycloakAuthorization
properties:
cleanupUndefinedAuthorizations:
default: false
type: boolean
keycloak:
properties:
adminSecret:
properties:
name:
default: keycloak-initial-admin
type: string
passwordKey:
default: password
type: string
usernameKey:
default: username
type: string
type: object
baseUrl:
description: 'Example: https://keycloak.apps-crc.testing'
type: string
type: object
managementState:
default: Managed
type: string
realm:
properties:
clients:
items:
properties:
authorizationSettings:
properties:
permissions:
items:
properties:
name:
type: string
policy:
type: string
resource:
type: string
scope:
type: string
type: object
type: array
policies:
items:
properties:
config:
properties:
groups:
type: string
type: object
decisionStrategy:
enum:
- UNANIMOUS
- AFFIRMATIVE
type: string
description:
type: string
id:
type: string
logic:
enum:
- POSITIVE
- NEGATIVE
type: string
name:
type: string
type:
description: Only use one of the following policy
types (aggregated, client, client-scope, group,
regex, role, time, user)
properties:
aggregated:
properties:
policies:
description: array of policy ids
items:
type: string
type: array
type: object
client:
properties:
clients:
items:
type: string
type: array
type: object
client-scope:
properties:
clientScopes:
items:
properties:
id:
type: string
required:
type: boolean
type: object
type: array
type: object
group:
properties:
groups:
items:
properties:
extendChildren:
type: boolean
id:
type: string
type: object
type: array
groupsClaim:
type: string
type: object
regex:
properties:
pattern:
type: string
targetClaim:
type: string
targetContextAttributes:
type: boolean
type: object
role:
properties:
roles:
items:
properties:
id:
type: string
required:
type: boolean
type: object
type: array
type: object
time:
properties:
dayMonth:
type: number
dayMonthEnd:
type: number
hour:
type: number
hourEnd:
type: number
minute:
type: number
minuteEnd:
type: number
month:
type: number
monthEnd:
type: number
notAfter:
description: "2024-04-26T00:00:00Z"
type: string
notBefore:
description: "2024-04-25T00:00:00Z"
type: string
notOnOrAfter:
description: "2024-04-26T00:00:00Z"
type: string
type: object
user:
properties:
users:
items:
type: string
type: array
type: object
type: object
type: object
type: array
resources:
items:
properties:
attributes:
items:
type: object
x-kubernetes-preserve-unknown-fields: true
type: array
displayName:
type: string
iconUri:
type: string
name:
type: string
scopes:
items:
properties:
displayName:
type: string
id:
type: string
name:
type: string
type: object
type: array
scopesUma:
items:
properties:
displayName:
type: string
id:
type: string
name:
type: string
type: object
type: array
type:
type: string
uri:
type: string
uris:
items:
type: string
type: array
type: object
type: array
scopes:
items:
properties:
displayName:
type: string
iconUri:
type: string
id:
description: max 36 characters
type: string
name:
type: string
type: object
type: array
type: object
id:
type: string
type: object
type: array
id:
type: string
type: object
validateCerts:
default: true
type: boolean
type: object
status:
description: Status defines the observed state of KeycloakAuthorization
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
served: true
storage: true
subresources:
status: {}
status:
acceptedNames:
kind: ""
plural: ""
conditions: null
storedVersions: null
14 changes: 14 additions & 0 deletions operators/keycloak-permissions-operator/1.4.1/metadata/annotations.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
annotations:
# Core bundle annotations.
operators.operatorframework.io.bundle.mediatype.v1: registry+v1
operators.operatorframework.io.bundle.manifests.v1: manifests/
operators.operatorframework.io.bundle.metadata.v1: metadata/
operators.operatorframework.io.bundle.package.v1: keycloak-permissions-operator
operators.operatorframework.io.bundle.channels.v1: alpha
operators.operatorframework.io.metrics.builder: operator-sdk-v1.28.1
operators.operatorframework.io.metrics.mediatype.v1: metrics+v1
operators.operatorframework.io.metrics.project_layout: ansible.sdk.operatorframework.io/v1

# Annotations for testing.
operators.operatorframework.io.test.mediatype.v1: scorecard+v1
operators.operatorframework.io.test.config.v1: tests/scorecard/
Loading

0 comments on commit 0d82531

Please sign in to comment.