Authorization Server Admin API Helm Chart Config
Configuration for a Helm chart is provided as a YAML formatted file. The following table lists the configuration parameters, a description and their default values.
| Parameter | Description | Default |
|---|---|---|
| authorizationApi.enabled | If an Authorization Server should be deployed. | true |
| authorizationApi.replicaCount | Number of replicas to deploy of the Authorization Server, set to a number > 1 for redundancy purposes. | 1 |
| authorizationApi.image.credentials | Name of the secret within the deploy namespace that contains the credentials for the container image. | identos |
| authorizationApi.image.repository | The repository URL for the container image. | null |
| authorizationApi.image.tag | The specific tag/version of the docker image. | null |
| authorizationApi.image.pullPolicy | Pod container pullPolicy setting, see https://kubernetes.io/docs/concepts/containers/images/ for details. | Always |
| authorizationApi.ingress.enabled | Boolean value enabling or disabling the creation of an ingress record. | false |
| authorizationApi.ingress.annotations | Any custom annotations for this ingress record. | |
| authorizationApi.ingress.host | Hostname to configure the ingress record with. | null |
| authorizationApi.application.config | Full application configuration for the FPX Authorization Server. Click here for details. | "" |
| authorizationApi.application.enableHTTPS | Full end-to-end TLS encryption to application container. | true |
| authorizationApi.application.port | TCP Port that application will be listening on. | 8080 |
| authorizationApi.extraEnv | Extra environment variables to inject into container. | |
| authorizationApi.nodeSelector | Node selector rules. | |
| authorizationApi.tolerations | Any node taints to tolerate. | |
| authorizationApi.affinity | Any resource affinities for node selection. | |
| authorizationApi.refresh | Useful parameter to force application to restart when new configurations are applied. | 1 |
| authorizationApi.ingress.tls.hosts | Hostname of the environment. | null |
| authorizationApi.ingress.tls.secretName | Refers to the SSL certificates required for HTTPS. | null |
| authorizationApi.keystores.https.alias | The alias (or name) under which the key is stored in the keystore. This needs to be in a base64 encoded format. Refer to the Keystore Creation and Configuration section for details. | null |
| authorizationApi.keystores.https.enabled | Enable HTTPS. | true |
| authorizationApi.keystores.https.jwks | The key itself as a md5 encoded PKCS12 KeyStore. This needs to be in a base64 encoded format. Refer to the Keystore Creation and Configuration section for details. | null |
| authorizationApi.keystores.https.password | The password of the keystore. This needs to be in a base64 encoded format. Refer to the Keystore Creation and Configuration section for details. | null |
| authorizationApi.keystores.signingKey.enable | Key used for signing/verifying. | null |
| authorizationApi.suffix | Suffix value for the Authorization Server API. | null |
| authorizationApi.deployment.annotations | Allows you to add custom annotations to the deployment object. | null |