|
1 | 1 | questions: |
2 | | -# SPAR Partner API |
3 | | -- variable: sparHostname |
4 | | - description: Hostname for all SPAR services |
| 2 | +# ----------------------------- Hostnames ----------------------------- |
| 3 | +- variable: sparMapperAPI.sparHostname |
| 4 | + description: Hostname for the SPAR Mapper API |
5 | 5 | type: string |
6 | | - label: SPAR Hostname |
| 6 | + label: SPAR Mapper API Hostname |
| 7 | + group: Hostnames |
7 | 8 |
|
8 | | -# Beneficary portal API |
9 | 9 | - variable: benePortalAPI.benePortalHostname |
10 | | - description: Hostname for Beneficiary Portal |
| 10 | + description: Hostname for the SPAR Beneficiary Portal API |
11 | 11 | type: string |
12 | 12 | label: Beneficiary Portal Hostname |
| 13 | + group: Hostnames |
13 | 14 |
|
14 | | -# eSignet |
15 | | -- variable: esignetBaseUrl |
16 | | - description: Base URL of eSignet for authentication |
17 | | - type: string |
18 | | - label: eSignet Base URL |
| 15 | +# ----------------------------- Keycloak ------------------------------ |
| 16 | +- variable: keycloak-init.enabled |
| 17 | + description: Provision the SPAR OIDC client in Keycloak via the keycloak-init job |
| 18 | + type: boolean |
| 19 | + default: true |
| 20 | + label: Enable Keycloak Init |
| 21 | + group: Keycloak |
19 | 22 |
|
20 | | -# Keycloak |
21 | | -- variable: keycloakBaseUrl |
22 | | - description: Keycloak base URL for client authentication |
| 23 | +- variable: global.keycloakBaseUrl |
| 24 | + description: Public (namespace-scoped) Keycloak base URL used by apps for the OIDC issuer/token URL |
23 | 25 | type: string |
24 | 26 | label: Keycloak Base URL |
| 27 | + group: Keycloak |
| 28 | + |
| 29 | +- variable: global.keycloakRealm |
| 30 | + description: Keycloak realm in which the SPAR client is provisioned and tokens are issued |
| 31 | + type: string |
| 32 | + label: Keycloak Realm |
| 33 | + group: Keycloak |
25 | 34 |
|
26 | | -- variable: sparAuthClientId |
27 | | - description: OIDC client ID |
| 35 | +- variable: global.authClientId |
| 36 | + description: OIDC client ID (must match the client provisioned by keycloak-init) |
28 | 37 | type: string |
29 | 38 | label: OIDC Client ID |
| 39 | + group: Keycloak |
30 | 40 |
|
31 | | -- variable: sparAuthClientSecret |
32 | | - description: OIDC client Kuberenetes secret name |
| 41 | +- variable: global.authClientSecret |
| 42 | + description: Kubernetes secret name holding the OIDC client password |
33 | 43 | type: string |
34 | 44 | label: OIDC Client Secret Name |
| 45 | + group: Keycloak |
35 | 46 |
|
36 | | -- variable: sparAuthClientSecretKey |
37 | | - description: Key containing OIDC client password |
| 47 | +- variable: global.authClientSecretKey |
| 48 | + description: Key within the secret containing the OIDC client password |
38 | 49 | type: string |
39 | 50 | label: OIDC Client Secret Key |
| 51 | + group: Keycloak |
40 | 52 |
|
41 | | -# Keymanager |
42 | | -- variable: keymanagerInstallationName |
| 53 | +# ----------------------------- Keymanager ---------------------------- |
| 54 | +- variable: global.keymanagerInstallationName |
43 | 55 | description: |- |
44 | 56 | Internal service name of Keymanager |
45 | 57 | type: reference_service |
46 | 58 | label: Keymanager Service Name |
47 | | - group: Keymanager Settings |
| 59 | + group: Keymanager |
0 commit comments