admin/infra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
infra/k8s/pg-init/keycloak-db.yaml
ansible 023ad0586f Update k8s manifests
2026-03-10 13:03:03 +08:00

39 lines
1.1 KiB
YAML
Raw Blame History

apiVersion: batch/v1
kind: Job
metadata:
name: keycloak-db-init
namespace: pg-init
spec:
ttlSecondsAfterFinished: 300
template:
spec:
restartPolicy: OnFailure
containers:
- name: db-init
image: postgres:17
env:
- name: PGHOST
value: pgbouncer.internal
- name: PGPORT
value: "6432"
- name: PGUSER
value: pginit
- name: PGPASSWORD
valueFrom:
secretKeyRef:
name: pg-init-secret
key: password
- name: KC_DB_PASSWORD
valueFrom:
secretKeyRef:
name: keycloak-db-bootstrap-secret
key: password
command:
- bash
- -c
- |
psql -c "CREATE DATABASE keycloak;" || true
psql -c "CREATE USER keycloak WITH PASSWORD '${KC_DB_PASSWORD}';" || true
psql -c "GRANT ALL PRIVILEGES ON DATABASE keycloak TO keycloak;" || true
psql -d keycloak -c "GRANT ALL ON SCHEMA public TO keycloak;" || true
Reference in New Issue View Git Blame Copy Permalink