onecx-permission-svc
Configuration
Configuration property fixed at build time - All other configuration properties are overridable at runtime
Configuration property |
Type |
Default |
|---|---|---|
Verified permission token Environment variable: |
boolean |
|
Issuer public key location suffix. Environment variable: |
string |
|
Issuer public key location enabled Environment variable: |
boolean |
|
Claim separator Environment variable: |
string |
|
Claim path Environment variable: |
string |
|
Role mapping for the template import Environment variable: |
Map<String,String> |
|
Template import tenants Environment variable: |
list of string |
|
Default properties
src/main/resources/application.properties
quarkus.datasource.db-kind=postgresql
quarkus.datasource.jdbc.max-size=30
quarkus.datasource.jdbc.min-size=10
quarkus.datasource.metrics.enabled=true
quarkus.http.auth.permission.health.paths=/q/*
quarkus.http.auth.permission.health.policy=permit
quarkus.http.auth.permission.default.paths=/*
quarkus.http.auth.permission.default.policy=authenticated
quarkus.native.resources.includes=import/template.json
quarkus.hibernate-orm.database.generation=validate
quarkus.hibernate-orm.multitenant=DISCRIMINATOR
quarkus.hibernate-orm.jdbc.timezone=UTC
quarkus.hibernate-orm.metrics.enabled=true
quarkus.liquibase.migrate-at-start=true
quarkus.liquibase.validate-on-migrate=true
tkit.rs.context.tenant-id.enabled=true
onecx.permission.token.verified=true
onecx.permission.token.issuer.public-key-location.suffix=/protocol/openid-connect/certs
onecx.permission.token.issuer.public-key-location.enabled=false
onecx.permission.token.claim.path=realm_access/roles
tkit.dataimport.enabled=false
tkit.dataimport.configurations.template.file=import/template.json
tkit.dataimport.configurations.template.class-path=true
tkit.dataimport.configurations.template.enabled=false
tkit.dataimport.configurations.template.stop-at-error=true
%prod.quarkus.datasource.jdbc.url=${DB_URL:jdbc:postgresql://postgresdb:5432/onecx-permission?sslmode=disable}
%prod.quarkus.datasource.username=${DB_USER:onecx-permission}
%prod.quarkus.datasource.password=${DB_PWD:onecx-permission}
%prod.quarkus.oidc-client.client-id=${ONECX_OIDC_CLIENT_CLIENT_ID:${quarkus.application.name}}Extensions
Extensions |
Documentation |
Configuration |
Version |
|---|---|---|---|
onecx-core |
1.3.0 |
||
onecx-tenant |
1.3.0 |
||
tkit-quarkus-data-import |
3.3.0 |
||
tkit-quarkus-rest-context |
3.3.0 |
||
tkit-quarkus-jpa-tenant |
3.3.0 |
||
tkit-quarkus-jpa |
3.3.0 |
||
tkit-quarkus-log-cdi |
3.3.0 |
||
tkit-quarkus-log-rs |
3.3.0 |
||
tkit-quarkus-log-json |
3.3.0 |
||
tkit-quarkus-rest |
3.3.0 |
||
quarkus-arc |
3.20.1 |
||
quarkus-liquibase |
3.20.1 |
||
quarkus-smallrye-health |
3.20.1 |
||
quarkus-micrometer-registry-prometheus |
3.20.1 |
||
quarkus-hibernate-orm |
3.20.1 |
||
quarkus-rest |
3.20.1 |
||
quarkus-rest-jackson |
3.20.1 |
||
quarkus-jdbc-postgresql |
3.20.1 |
||
quarkus-smallrye-openapi |
3.20.1 |
||
quarkus-hibernate-validator |
3.20.1 |
||
quarkus-opentelemetry |
3.20.1 |
||
quarkus-oidc |
3.20.1 |
||
tkit-quarkus-security |
3.3.0 |
||
quarkus-container-image-docker |
3.20.1 |
||
quarkus-smallrye-context-propagation |
3.20.1 |
||
===kus-smallrye-context-propagation |
3.15.3 |
||
tkit-quarkus-oidc-health |
2.40.0 |
Helm
Default values
app:
name: svc
template:
oidc_client_id: "ONECX_OIDC_CLIENT_CLIENT_ID"
image:
repository: "onecx/onecx-permission-svc"
db:
enabled: true
operator:
keycloak:
client:
enabled: true
spec:
kcConfig:
defaultClientScopes: [ ocx-tn:read ]
microservice:
spec:
description: OneCX Permission Backend Service
name: OneCX Permission SVC