27 lines
1.2 KiB
Django/Jinja
27 lines
1.2 KiB
Django/Jinja
[Unit]
|
|
Description=SSO Provider for OpenFest
|
|
|
|
[Container]
|
|
ContainerName=sso-keycloak
|
|
Image=quay.io/keycloak/keycloak:latest
|
|
|
|
Environment=JAVA_OPTS="-Xms64m -Xmx512m -XX:MetaspaceSize=96M -XX:MaxMetaspaceSize=256m -Dfile.encoding=UTF-8 -Dsun.stdout.encoding=UTF-8 -Dsun.err.encoding=UTF-8 -Dstdout.encoding=UTF-8 -Dstderr.encoding=UTF-8 -XX:+ExitOnOutOfMemoryError -Djava.security.egd=file:/dev/urandom -XX:+UseG1GC -XX:MinHeapFreeRatio=10 -XX:MaxHeapFreeRatio=80 -XX:GCTimeRatio=4 -XX:AdaptiveSizePolicyWeight=90 -XX:FlightRecorderOptions=stackdepth=512"
|
|
Volume={{ keycloak.datadir }}/keystore/:/keystore/
|
|
|
|
Secret=keycloak-admin-user,type=env,target=KEYCLOAK_ADMIN
|
|
Secret=keycloak-admin-password,type=env,target=KEYCLOAK_ADMIN_PASSWORD
|
|
|
|
Secret=keycloak-db-host,type=env,target=KC_DB_URL_HOST
|
|
Secret=keycloak-db-name,type=env,target=KC_DB_URL_DATABASE
|
|
Secret=keycloak-db-user,type=env,target=KC_DB_USERNAME
|
|
Secret=keycloak-db-password,type=env,target=KC_DB_PASSWORD
|
|
Environment=KC_DB=postgres
|
|
Environment=KC_HEALTH_ENABLED=true
|
|
|
|
Exec=start --features=preview --hostname {{ keycloak.hostname }} --proxy edge
|
|
|
|
PublishPort={{ keycloak.listen_address }}:8080
|
|
AutoUpdate=registry
|
|
[Install]
|
|
WantedBy=default.target
|