CNC Console-IAM Configuration Options During Deployment
Table 3-4 CNC Console-IAM Configuration Options
| Attribute Name | Data type | Range | Mandatory(M)/Optional(O)/Conditional(C) | Description |
|---|---|---|---|---|
| keycloak.image.repositroy | <String> | It may contain lowercase letters, digits, and separators. A separator is defined as a period, one or two underscores, or one or more dashes. | M | Here user provides the repository that contains cncc-iam
container image. It comprises of the following: <registry-url>:<registry-port>/<repo>
e.g.:
|
| keycloak.image.tag | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | Image Tag to be used for cncc-iam micro service. |
| keycloak.image.pullpolicy | <String> | It can take a value from the following: IfNotPresent, Always, Never IfNotPresent is the default pullPolicy | O | Pull Policy decides from where to pull the image. |
| keycloak.username | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. | O | It is the name of cncc-iam user as given by the user. Ex: admin |
| keycloak.password | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. | O | It is the admin password. |
| keycloak.existingSecret | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | It specifies an existing secret name to be used for the admin password Ex: cncc-iam-secret |
| keycloak.existingSecretKey | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | It is the key in the existing secret that stores the password Ex: password |
| keycloak.persistence.dbVendor | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. | M | It is the database vendor name Ex: mysql |
| keycloak.persistence.dbName | <String> | Valid String | M | It is the name of the database used for cncc-iam Ex: cnccDb |
| keycloak.persistence.dbHost | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. | M | It the hostname for persistence db Ex: mysql-sds.default.svc.cluster.local |
| keycloak.persistence.dbPort | <Integer> | It can range from 0-65535 | M | It is the db port for cncc-iam Ex: 3306 |
| keycloak.persistence.existingSecret | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | It specifies an existing secret to be used for mysql username and password Ex: cncc-db-secret |
| keycloak.persistence.existingSecretPasswordKey | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | It is the key in the existing secret that stores the password Ex: password |
| keycloak.persistence.existingSecretUsernameKey | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | It is the key in the existing secret that stores the username Ex: user |
| keycloak.service.type | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | M | It should be set to NodePort |
| keycloak.service.httpPort | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters | O | It is the port number which makes cncc-iam service visible to other services running within the same K8s cluster |
| keycloak.service.httpNodePort | <String> | Valid ASCII and may contain lowercase and uppercase letters, digits, underscores, periods and dashes. A tag name may not start with a period or a dash and may contain a maximum of 128 characters. Default value: 30024 | O | It is the NodePort number where cncc-iam service |
