Authorization Server Helm Chart Config
Configuration for a Helm chart is provided as a YAML formatted file. The following table lists the configuration parameters, a description and their default values.
| Parameter | Description | Default |
|---|---|---|
| authorizationServer.enabled | If an Authorization Server should be deployed. | true |
| authorizationServer.replicaCount | Number of replicas to deploy of the Authorization Server, set to a number > 1 for redundancy purposes. | 1 |
| authorizationServer.image.credentials | Name of the secret within the deploy namespace that contains the credentials for the container image. | identos |
| authorizationServer.image.repository | The repository URL for the container image. | null |
| authorizationServer.image.tag | The specific tag/version of the docker image. | null |
| authorizationServer.image.pullPolicy | Pod container pullPolicy setting, see https://kubernetes.io/docs/concepts/containers/images/ for details. | Always |
| authorizationServer.ingress.enabled | Boolean value enabling or disabling the creation of an ingress record. | false |
| authorizationServer.ingress.annotations | Any custom annotations for this ingress record. | |
| authorizationServer.ingress.host | Hostname with which an ingress record can be configured. | null |
| authorizationServer.application.config | Full application configuration for the FPX Authorization Server. Click here for details. | "" |
| authorizationServer.application.enableHTTPS | Setting this value to 'true' will enable full end-to-end TLS encryption to application container. | true |
| authorizationServer.application.port | TCP Port that application will be listening on. | 8080 |
| authorizationServer.extraEnv | Extra environment variables to inject into container. | |
| authorizationServer.nodeSelector | Node selector rules. | |
| authorizationServer.tolerations | Any node taints to tolerate. | |
| authorizationServer.affinity | Any resource affinities for node selection. | |
| authorizationServer.refresh | Useful parameter to force application to restart when new configurations are applied. | 1 |
| authorizationServer.deployment.annotations | This will discover deploymentconfigs/deployments/daemonsets/statefulset/rollouts automatically. | null |
| authorizationServer.ingress.tls.hosts | Hostname of the environment. | null |
| authorizationServer.keystores.https.alias | The alias (or name) under which the key is stored in the keystore. This needs to be in a base64 encoded format. Refer to the Keystore Creation and Configuration section for details. | null |
| authorizationServer.keystores.https.enabled | Enable HTTPS. | true |
| authorizationServer.keystores.https.jwks | The key itself as a md5 encoded PKCS12 KeyStore. This needs to be in a base64 encoded format. Refer to the Keystore Creation and Configuration section for details. | null |
| authorizationServer.keystores.https.password | The password of the keystore. This needs to be in a base64 encoded format. Refer to the Keystore Creation and Configuration section for details. | null |
| authorizationServer.keystores.signingKey.enable | Key used for signing/verifying. | null |
| authorizationServer.suffix | Suffix value for the Auth API application. | null |