Skip to content

Commit

Permalink
Merge pull request #205 from cho4036/render-test-local
Browse files Browse the repository at this point in the history 
Kiali 및 Jaeger SSO 기능 추가
  • Loading branch information
@ktkfree
ktkfree authored Nov 2, 2023
2 parents 4a53c09 + 28bc341 commit cb9f479
Showing 1 changed file with 18 additions and 2 deletions.
20 changes: 18 additions & 2 deletions eks-msa-reference/service-mesh/site-values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,10 @@ global:
tks-egressgateway: enabled
ingressGatewayLabel: istio-ingressgateway
egressGatewayLabel: istio-egressgateway

keycloakIssuerUri: https://keycloak.com/auth/realms/oraganization
keycloakClientPrefix: client-prefix
gatekeeperSecret: gatekeeper-secret

charts:
- name: cert-manager
override:
Expand Down Expand Up @@ -228,7 +231,12 @@ charts:
deployment.resources.limits.memory: 1024Mi
deployment.nodeSelector:
tks-msa: enabled
auth.strategy: anonymous
auth.strategy: openid
auth.openid.client_id: $(keycloakClientPrefix)-kiali
auth.openid.issuer_uri: $(keycloakIssuerUri)
auth.openid.username_claim: preferred_username
auth.openid.scopes: [ "openid", "email" ]
auth.openid.disable_rbac: true
externalServices.istio.configMapName: istio
externalServices.istio.istioIdentityDomain: svc.$(clusterName)
externalServices.prometheus.url: http://lma-prometheus.lma.svc:9090
Expand All @@ -241,3 +249,11 @@ charts:
externalServices.grafana.inClusterUrl: http://grafana.lma.svc:80
externalServices.grafana.url: https://grafana-v2.taco-cat.xyz
server.webRoot: /

- name: keycloak-gatekeeper
override:
config:
discovery-url: $(keycloakIssuerUri)
upstream-url: http://jaeger-operator-jaeger-query.tks-msa.svc
client-id: $(keycloakClientPrefix)-gatekeeper-jaeger
client-secret: $(gatekeeperSecret)

0 comments on commit cb9f479

Please sign in to comment.