Differences

This shows you the differences between two versions of the page.

--- сервис_keycloak [2025/10/07 10:33]
val [Kubernetes]
+++ сервис_keycloak [2025/10/10 11:42] (current)
val [Аутентификация пользователей WEB приложения]
@@ Line 113: / Line 113: @@
   * [[https://github.com/bitnami/charts/tree/keycloak/17.3.6/bitnami/keycloak]]
   * [[https://github.com/helm/helm/issues/11000|issues: helm search repo chart <oci-repo/oci-chart> --versions for OCI]]
+  * [[Сервис PostgreSQL]]
+  * Kubernetes [[Система Kubernetes#secrets tls]]
 <code>
@@ Line 201: / Line 204: @@
 ~/keycloak$ ###helm template my-keycloak -f values.yaml oci://registry-1.docker.io/bitnamicharts/keycloak -n my-keycloak-ns --version $KC_HC_VER | less
-~/keycloak$ helm upgrade my-keycloak -i -f values.yaml oci://registry-1.docker.io/bitnamicharts/keycloak -n my-keycloak-ns --create-namespace --version $KC_HC_VER
+~/keycloak$ helm upgrade my-keycloak -i -f values.yaml oci://registry-1.docker.io/bitnamicharts/keycloak -n my-keycloak-ns --version $KC_HC_VER --create-namespace
 ~/keycloak$ kubectl -n my-keycloak-ns get pods -o wide --watch
@@ Line 250: / Line 253: @@
     Client ID: any-client
     Valid redirect URIs: *
+может понадобиться включить
+    Direct access grants
 </code>
@@ Line 326: / Line 332: @@
   username ->
     LDAP Attribute: sAMAccountName
+</code>
+=== FreeIPA ===
+<code>
+Vendor: Other
+Connection URL: ldap://server.corpX.un
+Bind type: none
+  или, для выгрузки email
+Bind type: simple
+Bind DN: uid=admin,cn=users,cn=accounts,dc=corp13,dc=un
+Edit mode: READ_ONLY
+Users DN: cn=users,cn=compat,dc=corpX,dc=un
+Users DN: cn=users,cn=accounts,dc=corpX,dc=un
+...
+Username LDAP attribute: uid
+...
+RDN LDAP attribute: uid
+...
+UUID LDAP attribute: ipaAnchorUUID
+UUID LDAP attribute: uid
 </code>

Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Differences

Page Tools