diff --git a/app-of-apps/keycloak-backup.yaml b/app-of-apps/keycloak-backup.yaml index a09842f..daab1a3 100644 --- a/app-of-apps/keycloak-backup.yaml +++ b/app-of-apps/keycloak-backup.yaml @@ -43,20 +43,7 @@ spec: subPath: app-quarkus-dir containers: - args: - - /opt/bitnami/keycloak/bin/kc.sh - - export - - --file - - /backup/realm-export.json - - --realm - - avril - - --db - - postgres - - --db-url - - jdbc:postgresql://keycloak-postgresql-hl/bitnami_keycloak - - --db-password - - $(KEYCLOAK_DATABASE_PASSWORD) - - --db-username - - bn_keycloak + - /script/backup_keycloak.sh env: - name: KUBERNETES_NAMESPACE valueFrom: @@ -104,6 +91,8 @@ spec: subPath: app-quarkus-dir - mountPath: /backup name: backup-dir + - mountPath: /script + name: script-volume restartPolicy: Never securityContext: # https://stackoverflow.com/questions/50156124/kubernetes-nfs-persistent-volumes-permission-denied @@ -115,6 +104,10 @@ spec: - name: backup-dir persistentVolumeClaim: claimName: backup-dir-pvc + - name: script-volume + configMap: + name: keycloak-backup-script + defaultMode: 0777 --- apiVersion: v1 kind: PersistentVolume @@ -146,3 +139,19 @@ spec: resources: requests: storage: 2M +--- +apiVersion: v1 +kind: ConfigMap +metadata: + creationTimestamp: "2024-04-20T04:14:45Z" + name: keycloak-backup-script + namespace: keycloak +data: + backup_keycloak.sh: |+ + /opt/bitnami/keycloak/bin/kc.sh export \ + --file "/backup/realm-export-$(date '+%Y-%m-%d').json" \ + --realm avril \ + --db postgres \ + --db-url jdbc:postgresql://keycloak-postgresql-hl/bitnami_keycloak \ + --db-password $(KEYCLOAK_DATABASE_PASSWORD) \ + --db-username bn_keycloak