Configure Organization Management
This page outlines the configuration values for the Organization Management deployed via Axual Governance Helm chart.
About Organization Management
The Organization Management component manages organizations (tenants) for the Axual Self-service platform. It handles user signups, user invites and SSO integration of the organization with Keycloak.
Organization Management Configuration
Organization Management requires very limited configuration to function, simply information on how to interact with the Keycloak
For a complete list of configurations, please refer to Organization Management Configuration.
Organization Management Repository Configuration
Initially, you can override the registry, tag, and pullPolicy for the Topic Browse pod.
By default, these values come from the Axual Governance charts.
You can also override the imagePullSecrets; if not specify the Organization Manager pod will use the global.imagePullSecrets
organization-mgmt:
image:
registry: "docker.axual.io"
pullPolicy: "Always"
tag: "0.3.0"
imagePullSecrets:
- name: axualdockercredKeycloak Configuration
The Organization Management needs to now where the Keycloak admin console is reachable and the Admin credentials.
You can provide this information as follows
organization-mgmt:
# In case you need to provide a CA cert file to use as `trustStore`
extraVolumes: |
- name: ca-certs
secret:
secretName: k8s-secret-name
extraVolumeMounts: |
- name: ca-certs
mountPath: /path/to/ca-certs
config:
# Keycloak Configuration
authStrategy: "keycloak"
# -- Where Keycloak is reachable
keycloakDomain: "http://keycloak-http"
# -- Keycloak Admin credentials
keycloakCLIUsername: "admin"
keycloakCLIPassword: "notsecret"
# -- To enable/disable tls verification in the http-client
tlsVerification: true||false
# -- Point to the mounted extra CA certs.
trustStore: "/path/to/ca-certs/ca.crt"