b29b6a092c
Change-Id: Ia61b15127c67cdd9dddcab9f3540f1aee949cd6b Reviewed-on: https://cl.tvl.fyi/c/depot/+/5839 Tested-by: BuildkiteCI Reviewed-by: sterni <sternenseemann@systemli.org>
18 lines
574 B
Markdown
18 lines
574 B
Markdown
Terraform for Keycloak
|
|
======================
|
|
|
|
This contains the Terraform configuration for deploying TVL's Keycloak
|
|
instance (which lives at `auth.tvl.fyi`).
|
|
|
|
Secrets are needed for applying this. The encrypted file
|
|
`//ops/secrets/tf-keycloak.age` contains `export` calls which should
|
|
be sourced, for example via `direnv`, by users with the appropriate
|
|
credentials.
|
|
|
|
An example `direnv` configuration used by tazjin is this:
|
|
|
|
```
|
|
# //ops/keycloak/.envrc
|
|
source_up
|
|
eval $(age --decrypt -i ~/.ssh/id_ed25519 $(git rev-parse --show-toplevel)/ops/secrets/tf-keycloak.age)
|
|
```
|