From 56a6dd4a4fe0acd3a5ed25c5b601a1fa539215b8 Mon Sep 17 00:00:00 2001
From: Sam Huang <sam.huang@yoppworks.com>
Date: Fri, 26 Mar 2021 13:27:17 -0600
Subject: [AAI] Keycloak integration into aai-traversal

In order to support multi-tenancy, keycloak(https://www.keycloak.org/)
as Identity and Access Management has been integrated into aai-traversal
and needs to be configured accordignly based on created instance

Issue-ID: AAI-3300
Signed-off-by: Sam Huang <sam.huang@yoppworks.com>
Change-Id: I393fb98ef6ac9cc6f4bf9d476cd682531d15011e
---
 .../resources/config/application-keycloak.properties        | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 kubernetes/aai/components/aai-traversal/resources/config/application-keycloak.properties

(limited to 'kubernetes/aai/components/aai-traversal/resources/config/application-keycloak.properties')

diff --git a/kubernetes/aai/components/aai-traversal/resources/config/application-keycloak.properties b/kubernetes/aai/components/aai-traversal/resources/config/application-keycloak.properties
new file mode 100644
index 0000000000..dd1956b63f
--- /dev/null
+++ b/kubernetes/aai/components/aai-traversal/resources/config/application-keycloak.properties
@@ -0,0 +1,13 @@
+spring.autoconfigure.exclude=\
+  org.springframework.boot.autoconfigure.jdbc.DataSourceAutoConfiguration,\
+  org.springframework.boot.autoconfigure.orm.jpa.HibernateJpaAutoConfiguration
+
+multi.tenancy.enabled={{ .Values.config.keycloak.multiTenancy.enabled }}
+keycloak.auth-server-url=http://{{ .Values.config.keycloak.host }}:{{ .Values.config.keycloak.port }}/auth
+keycloak.realm={{ .Values.config.keycloak.realm }}
+keycloak.resource={{ .Values.config.keycloak.resource }}
+keycloak.public-client=false
+keycloak.principal-attribute=preferred_username
+
+keycloak.ssl-required=external
+keycloak.bearer-only=true
-- 
cgit 1.2.3-korg