Skip to content
Snippets Groups Projects
Commit 9489d701 authored by Helmut Hutzler's avatar Helmut Hutzler
Browse files

Updated /install-keycloak.sh / Added Yaml File for IngressRoute testing

parent 3ea0fb34
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Keycloak/install-keycloak.sh
+ 3
3
View file @ 9489d701
...@@ -2,7 +2,7 @@ ...@@ -2,7 +2,7 @@
# #
if [ -z "$2" ]; then if [ -z "$2" ]; then
echo "Error : Missing FQN for Ingress-Host parameter or namespace " echo "Error : Missing FQN for Ingress-Host parameter or namespace "
echo "Sample: $0 kube-master-h1.informatik.fh-nuernberg.de testing" echo "Sample: $0 kube-master-h1.informatik.fh-nuernberg.de myoidc-app-ns"
exit 1 exit 1
fi fi
INGRESS_HOST=$1 INGRESS_HOST=$1
...@@ -36,14 +36,14 @@ kubectl -n ${NAME_SPACE} describe secret ${TLS_CERT} ...@@ -36,14 +36,14 @@ kubectl -n ${NAME_SPACE} describe secret ${TLS_CERT}
cat ../ir-keycloak.yaml | sed "s/_INGRESS_HOST_/$INGRESS_HOST/g" | sed "s/_TLS_CERT_/$TLS_CERT/g" > ir-keycloak.yaml cat ../ir-keycloak.yaml | sed "s/_INGRESS_HOST_/$INGRESS_HOST/g" | sed "s/_TLS_CERT_/$TLS_CERT/g" > ir-keycloak.yaml
cat ../deploy-keycloak.yaml | sed "s/_INGRESS_HOST_/$INGRESS_HOST/g" | sed "s/_TLS_CERT_/$TLS_CERT/g" > deploy-keycloak.yaml cat ../deploy-keycloak.yaml | sed "s/_INGRESS_HOST_/$INGRESS_HOST/g" | sed "s/_TLS_CERT_/$TLS_CERT/g" > deploy-keycloak.yaml
kubectl -n ${NAME_SPACE} apply -f deploy-keycloak.yaml kubectl -n ${NAME_SPACE} apply -f deploy-keycloak.yaml
kubectl -n ${NAME_SPACE} apply -f ir-keycloak.yaml kubectl -n ${NAME_SPACE} apply -f ir-keycloak.yaml
kubectl -n ${NAME_SPACE} describe ingressroute ingressroute-oidc-app kubectl -n ${NAME_SPACE} describe ingressroute ingressroute-oidc-app
kubectl -n ${NAME_SPACE} get all kubectl -n ${NAME_SPACE} get all
sleep 5 sleep 5
echo "Attention: curl script below may fail as it takes some time until keycloak instance is ready just - rerun it should work for http and https ! " echo "Attention: curl scripts below may fail as it takes some time until keycloak REBAC realm gets imported ! "
echo " ---> just - rerun scripts / should work for both http and https ! "
echo "$ curl -v --insecure https://${INGRESS_HOST}/auth/" echo "$ curl -v --insecure https://${INGRESS_HOST}/auth/"
echo "$ curl -v http://${INGRESS_HOST}/auth/" echo "$ curl -v http://${INGRESS_HOST}/auth/"
......
Traefik/IngressRoute/kube-master/ingressRoute_nginx.yaml 0 → 100644
+ 34
0
View file @ 9489d701
apiVersion: traefik.containo.us/v1alpha1
kind: Middleware
metadata:
name: nginx-strip-path-prefix
spec:
stripPrefix:
prefixes:
- /nginx-green
- /nginx-blue
---
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
name: ingressroute-nginx
spec:
entryPoints:
- websecure
routes:
- match: Host(`kube-master.informatik.fh-nuernberg.de`) && Path(`/nginx-green`)
kind: Rule
middlewares:
- name: nginx-strip-path-prefix
services:
- name: nginx-service-green
port: 8080
- match: Host(`dev-storage.informatik.fh-nuernberg.de`) && Path(`/nginx-blue`)
kind: Rule
middlewares:
- name: nginx-strip-path-prefix
services:
- name: nginx-service-blue
port: 8080
Traefik/IngressRoute/kube-master/ingressRoute_whoami.yaml 0 → 100644
+ 14
0
View file @ 9489d701
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRoute
metadata:
name: ingressroute-who-svc
spec:
entryPoints:
- websecure
routes:
- match: Host(`kube-master.informatik.fh-nuernberg.de`) && Path(`/who`)
kind: Rule
services:
- name: whoami-svc
port: 80
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment