ansible-role-keycloak/defaults/main.yml

---
keycloak_major_version: '19'
keycloak_minor_version: '0'
keycloak_point_version: '2'
keycloak_openjdk_runtime_version: 11
keycloak_openjdk_version:
  - '{{ keycloak_openjdk_runtime_version }}'
keycloak_openjdk_bin: '/usr/lib/jvm/java-{{ keycloak_openjdk_runtime_version}}-openjdk-amd64/bin/java'
keycloak_install_dir: '/opt/keycloak'
keycloak_distribution_data_directory: '{{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}'
keycloak_conf_directory: '{{ keycloak_runtime_home }}/conf'
keycloak_providers_directory: '{{ keycloak_runtime_home }}/providers'
keycloak_data_directory: '{{ keycloak_runtime_home }}/data'
keycloak_log_directory: '/var/log/keycloak'
keycloak_service_name: keycloak
keycloak_optimize_build_at_startup: true
keycloak_upgrade_db_at_startup: false
keycloak_configuration_files:
  - keycloak.conf
  - cache-ispn.xml
  - quarkus.properties
keycloak_disabled_features: []
keycloak_preview_features: []
keycloak_remote_providers: []
  # - name: 'foo'
  #   state: 'present'
  #   maven_repo_url: ''
  #   maven_id: ''
  #   maven_group_id: ''
  #   maven_extension: ''
  #   maven_version: ''

keycloak_additional_properties: []
keycloak_quarkus_additional_properties: []

keycloak_external_avatar_dir_enabled: false
keycloak_external_avatar_dir: '{{ keycloak_data_directory }}/avatar'

keycloak_https_enabled: true
keycloak_https_protocols: 'TLSv1.3'
keycloak_letsencrypt_certs: '{{ keycloak_https_enabled }}'
keycloak_http_enabled: "{% if keycloak_https_enabled %}'false'{% else %}'true'{% endif %}"
# Set to /auth to be backward compatible with the old admin console
keycloak_http_relative_path: /
keycloak_listen: '127.0.0.1'
keycloak_http_port: 8080
keycloak_https_port: 8443
keycloak_set_hostname: false
keycloak_hostname: '{{ ansible_fqdn }}'

# console, file, gelf
keycloak_log_handlers: console
keycloak_log_console_format: '%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n'
keycloak_log_console_output: default
keycloak_log_file: '{{ keycloak_log_directory }}/keycloak.log'
keycloak_log_file_format: '%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n'
keycloak_log_level: warning
keycloak_log_backup_index: 10
keycloak_log_max_size: '10M'
keycloak_log_rotate_on_boot: 'true'
# We keep those together because some health checks are available only when the metrics are enabled.
keycloak_metrics_and_health_checks_enabled: 'true'

keycloak_use_external_db: true
# postgresql is the only supported choice for the time being
keycloak_db_vendor: 'postgres'
keycloak_database_name: keycloak
keycloak_database_user: keycloak_u
# keycloak_database_password: 'define it into a vault file'
keycloak_database_host: 'localhost'
keycloak_admin_user: kadmin
# keycloak_admin_password: 'define it into a vault file'

keycloak_before_nginx: false
keycloak_before_apache_httpd: false
keycloak_behind_reverse_proxy: true
keycloak_reverse_proxy_type: '{% if keycloak_https_enabled %}reencrypt{% else %}edge{% endif %}'
keycloak_reverse_proxy_infinispan_attach_route: 'true'

keycloak_cluster: false
keycloak_cache_type: ispn
keycloak_cache_stack: tcp
keycloak_cache_container_name: keycloak
keycloak_jgroups_multicast_port: '46655'
keycloak_jgroups_multicast_address: '228.6.7.8'
keycloak_jgroups_multicast_net: '224.0.0.1'
Initial commit 2020-06-18 18:23:12 +02:00			`---`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_major_version: '19'`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00			`keycloak_minor_version: '0'`
			`keycloak_point_version: '2'`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_openjdk_runtime_version: 11`
			`keycloak_openjdk_version:`
			`- '{{ keycloak_openjdk_runtime_version }}'`
			`keycloak_openjdk_bin: '/usr/lib/jvm/java-{{ keycloak_openjdk_runtime_version}}-openjdk-amd64/bin/java'`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00			`keycloak_install_dir: '/opt/keycloak'`
Install jcliff. New path for the data dir. 2021-02-15 19:58:53 +01:00			`keycloak_distribution_data_directory: '{{ keycloak_install_dir }}/{{ keycloak_distribution }}/{{ keycloak_wildfly_mode }}'`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_conf_directory: '{{ keycloak_runtime_home }}/conf'`
			`keycloak_providers_directory: '{{ keycloak_runtime_home }}/providers'`
			`keycloak_data_directory: '{{ keycloak_runtime_home }}/data'`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00			`keycloak_log_directory: '/var/log/keycloak'`
Option to change the service name. 2022-09-24 18:12:14 +02:00			`keycloak_service_name: keycloak`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_optimize_build_at_startup: true`
			`keycloak_upgrade_db_at_startup: false`
Install quarkus.properties to add log rotation. 2022-09-30 11:40:40 +02:00			`keycloak_configuration_files:`
			`- keycloak.conf`
			`- cache-ispn.xml`
			`- quarkus.properties`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_disabled_features: []`
Revert a wrong commit. 2022-09-26 19:07:36 +02:00			`keycloak_preview_features: []`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_remote_providers: []`
			`# - name: 'foo'`
			`# state: 'present'`
			`# maven_repo_url: ''`
			`# maven_id: ''`
			`# maven_group_id: ''`
			`# maven_extension: ''`
			`# maven_version: ''`

Add the opportunity to add custom optionswq 2022-11-30 20:25:13 +01:00			`keycloak_additional_properties: []`
			`keycloak_quarkus_additional_properties: []`

keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_external_avatar_dir_enabled: false`
			`keycloak_external_avatar_dir: '{{ keycloak_data_directory }}/avatar'`

			`keycloak_https_enabled: true`
			`keycloak_https_protocols: 'TLSv1.3'`
			`keycloak_letsencrypt_certs: '{{ keycloak_https_enabled }}'`
			`keycloak_http_enabled: "{% if keycloak_https_enabled %}'false'{% else %}'true'{% endif %}"`
Relative path is now customizable. 2022-09-25 14:31:50 +02:00			`# Set to /auth to be backward compatible with the old admin console`
			`keycloak_http_relative_path: /`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00			`keycloak_listen: '127.0.0.1'`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_http_port: 8080`
			`keycloak_https_port: 8443`
			`keycloak_set_hostname: false`
			`keycloak_hostname: '{{ ansible_fqdn }}'`

Install quarkus.properties to add log rotation. 2022-09-30 11:40:40 +02:00			`# console, file, gelf`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_log_handlers: console`
			`keycloak_log_console_format: '%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n'`
			`keycloak_log_console_output: default`
			`keycloak_log_file: '{{ keycloak_log_directory }}/keycloak.log'`
			`keycloak_log_file_format: '%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n'`
			`keycloak_log_level: warning`
Install quarkus.properties to add log rotation. 2022-09-30 11:40:40 +02:00			`keycloak_log_backup_index: 10`
			`keycloak_log_max_size: '10M'`
			`keycloak_log_rotate_on_boot: 'true'`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`# We keep those together because some health checks are available only when the metrics are enabled.`
			`keycloak_metrics_and_health_checks_enabled: 'true'`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00
Small cleanup. 2022-07-18 11:07:55 +02:00			`keycloak_use_external_db: true`
Fixes #19563. Add a validation check to the Keycloak DS. 2020-07-01 12:56:13 +02:00			`# postgresql is the only supported choice for the time being`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_db_vendor: 'postgres'`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00			`keycloak_database_name: keycloak`
			`keycloak_database_user: keycloak_u`
Small cleanup. 2022-07-18 11:07:55 +02:00			`# keycloak_database_password: 'define it into a vault file'`
Support an external database. Fix the name. 2020-06-19 19:10:02 +02:00			`keycloak_database_host: 'localhost'`
Add the admin user. 2020-06-19 20:13:43 +02:00			`keycloak_admin_user: kadmin`
Small cleanup. 2022-07-18 11:07:55 +02:00			`# keycloak_admin_password: 'define it into a vault file'`
Add support for the use of a reverse proxy. 2020-06-20 00:58:19 +02:00
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_before_nginx: false`
			`keycloak_before_apache_httpd: false`
Small cleanup. 2022-07-18 11:07:55 +02:00			`keycloak_behind_reverse_proxy: true`
Another wrong spelled variable. 2022-09-24 18:56:56 +02:00			`keycloak_reverse_proxy_type: '{% if keycloak_https_enabled %}reencrypt{% else %}edge{% endif %}'`
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_reverse_proxy_infinispan_attach_route: 'true'`
Install jcliff. New path for the data dir. 2021-02-15 19:58:53 +01:00
keycloak over quarkus, vers 19+ 2022-09-23 13:52:06 +02:00			`keycloak_cluster: false`
			`keycloak_cache_type: ispn`
			`keycloak_cache_stack: tcp`
			`keycloak_cache_container_name: keycloak`
Set the mcast addr and port. 2022-12-29 16:34:04 +01:00			`keycloak_jgroups_multicast_port: '46655'`
			`keycloak_jgroups_multicast_address: '228.6.7.8'`
			`keycloak_jgroups_multicast_net: '224.0.0.1'`