{"id":48081806,"url":"https://github.com/validatedpatterns/rhbk-chart","last_synced_at":"2026-04-04T14:54:42.806Z","repository":{"id":345591295,"uuid":"1151527772","full_name":"validatedpatterns/rhbk-chart","owner":"validatedpatterns","description":"Red Hat Build of Keycloak Helm Chart","archived":false,"fork":false,"pushed_at":"2026-04-01T12:44:36.000Z","size":37,"stargazers_count":0,"open_issues_count":2,"forks_count":1,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-01T14:48:28.060Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Makefile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/validatedpatterns.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-02-06T15:24:00.000Z","updated_at":"2026-04-01T12:38:55.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/validatedpatterns/rhbk-chart","commit_stats":null,"previous_names":["validatedpatterns/rhbk-chart"],"tags_count":2,"template":false,"template_full_name":"validatedpatterns/vp-template-chart","purl":"pkg:github/validatedpatterns/rhbk-chart","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/validatedpatterns%2Frhbk-chart","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/validatedpatterns%2Frhbk-chart/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/validatedpatterns%2Frhbk-chart/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/validatedpatterns%2Frhbk-chart/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/validatedpatterns","download_url":"https://codeload.github.com/validatedpatterns/rhbk-chart/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/validatedpatterns%2Frhbk-chart/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31403813,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-04T10:20:44.708Z","status":"ssl_error","status_checked_at":"2026-04-04T10:20:06.846Z","response_time":60,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-04-04T14:54:40.283Z","updated_at":"2026-04-04T14:54:42.797Z","avatar_url":"https://github.com/validatedpatterns.png","language":"Makefile","funding_links":[],"categories":[],"sub_categories":[],"readme":"# rhbk\n\n\u003c!-- markdownlint-disable MD013 --\u003e\n\n![Version: 0.0.4](https://img.shields.io/badge/Version-0.0.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square)\n\n\u003c!-- markdownlint-enable MD013 --\u003e\n\n\u003c!-- markdownlint-disable MD013 --\u003e\n\nDeploys RHBK\n\n\u003c!-- markdownlint-enable MD013 --\u003e\n\nThis chart is used to serve as the template for Validated Patterns Charts\n\n## Notable changes\n\n**Homepage:** \u003chttps://github.com/validatedpatterns/rhbk-chart\u003e\n\n## Maintainers\n\n| Name                    | Email                                | Url |\n| ----------------------- | ------------------------------------ | --- |\n| Validated Patterns Team | \u003cvalidatedpatterns@googlegroups.com\u003e |     |\n\n\u003c!-- markdownlint-disable MD013 MD034 MD060 --\u003e\n\n## Values\n\n| Key                                                                                         | Type   | Default                                        | Description |\n| ------------------------------------------------------------------------------------------- | ------ | ---------------------------------------------- | ----------- |\n| global.localClusterDomain                                                                   | string | `\"apps.example.com\"`                           |             |\n| global.secretStore.kind                                                                     | string | `\"ClusterSecretStore\"`                         |             |\n| global.secretStore.name                                                                     | string | `\"vault-backend\"`                              |             |\n| keycloak.adminUser.enabled                                                                  | bool   | `true`                                         |             |\n| keycloak.adminUser.passwordVaultKey                                                         | string | `\"secret/data/hub/infra/keycloak/keycloak\"`    |             |\n| keycloak.adminUser.secretName                                                               | string | `\"keycloak-admin-user\"`                        |             |\n| keycloak.adminUser.username                                                                 | string | `\"admin\"`                                      |             |\n| keycloak.defaultConfig                                                                      | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clientScopes[0].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[0].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[0].description                                           | string | `\"OpenID Connect built-in scope\"`              |             |\n| keycloak.defaultRealm.clientScopes[0].name                                                  | string | `\"openid\"`                                     |             |\n| keycloak.defaultRealm.clientScopes[0].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].config.\"id.token.claim\"            | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].config.\"introspection.token.claim\" | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].name                               | string | `\"sub\"`                                        |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[0].protocolMappers[0].protocolMapper                     | string | `\"oidc-sub-mapper\"`                            |             |\n| keycloak.defaultRealm.clientScopes[1].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[1].attributes.\"include.in.token.scope\"                   | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[1].description                                           | string | `\"OpenID Connect basic scope\"`                 |             |\n| keycloak.defaultRealm.clientScopes[1].name                                                  | string | `\"basic\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[1].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[1].protocolMappers[0].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[1].protocolMappers[0].config.\"introspection.token.claim\" | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[1].protocolMappers[0].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[1].protocolMappers[0].name                               | string | `\"sub\"`                                        |             |\n| keycloak.defaultRealm.clientScopes[1].protocolMappers[0].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[1].protocolMappers[0].protocolMapper                     | string | `\"oidc-sub-mapper\"`                            |             |\n| keycloak.defaultRealm.clientScopes[2].attributes.\"consent.screen.text\"                      | string | `\"${emailScopeConsentText}\"`                   |             |\n| keycloak.defaultRealm.clientScopes[2].attributes.\"display.on.consent.screen\"                | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].description                                           | string | `\"OpenID Connect email scope\"`                 |             |\n| keycloak.defaultRealm.clientScopes[2].name                                                  | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[2].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].config.\"claim.name\"                | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].config.\"id.token.claim\"            | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].config.\"jsonType.label\"            | string | `\"String\"`                                     |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].config.\"user.attribute\"            | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].config.\"userinfo.token.claim\"      | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].name                               | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[0].protocolMapper                     | string | `\"oidc-usermodel-attribute-mapper\"`            |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].config.\"claim.name\"                | string | `\"email_verified\"`                             |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].config.\"id.token.claim\"            | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].config.\"jsonType.label\"            | string | `\"boolean\"`                                    |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].config.\"user.attribute\"            | string | `\"emailVerified\"`                              |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].config.\"userinfo.token.claim\"      | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].name                               | string | `\"email verified\"`                             |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[2].protocolMappers[1].protocolMapper                     | string | `\"oidc-usermodel-attribute-mapper\"`            |             |\n| keycloak.defaultRealm.clientScopes[3].attributes.\"consent.screen.text\"                      | string | `\"${profileScopeConsentText}\"`                 |             |\n| keycloak.defaultRealm.clientScopes[3].attributes.\"display.on.consent.screen\"                | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].description                                           | string | `\"OpenID Connect profile scope\"`               |             |\n| keycloak.defaultRealm.clientScopes[3].name                                                  | string | `\"profile\"`                                    |             |\n| keycloak.defaultRealm.clientScopes[3].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].config.\"claim.name\"                | string | `\"preferred_username\"`                         |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].config.\"id.token.claim\"            | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].config.\"jsonType.label\"            | string | `\"String\"`                                     |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].config.\"user.attribute\"            | string | `\"username\"`                                   |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].config.\"userinfo.token.claim\"      | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].name                               | string | `\"username\"`                                   |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[0].protocolMapper                     | string | `\"oidc-usermodel-attribute-mapper\"`            |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].config.\"id.token.claim\"            | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].config.\"userinfo.token.claim\"      | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].name                               | string | `\"full name\"`                                  |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[3].protocolMappers[1].protocolMapper                     | string | `\"oidc-full-name-mapper\"`                      |             |\n| keycloak.defaultRealm.clientScopes[4].attributes.\"consent.screen.text\"                      | string | `\"${rolesScopeConsentText}\"`                   |             |\n| keycloak.defaultRealm.clientScopes[4].attributes.\"display.on.consent.screen\"                | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[4].attributes.\"include.in.token.scope\"                   | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[4].description                                           | string | `\"OpenID Connect roles scope\"`                 |             |\n| keycloak.defaultRealm.clientScopes[4].name                                                  | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[4].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].config.\"claim.name\"                | string | `\"realm_access.roles\"`                         |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].config.\"jsonType.label\"            | string | `\"String\"`                                     |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].config.\"user.attribute\"            | string | `\"foo\"`                                        |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].config.multivalued                 | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].name                               | string | `\"realm roles\"`                                |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[0].protocolMapper                     | string | `\"oidc-usermodel-realm-role-mapper\"`           |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[1].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[1].name                               | string | `\"audience resolve\"`                           |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[1].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[4].protocolMappers[1].protocolMapper                     | string | `\"oidc-audience-resolve-mapper\"`               |             |\n| keycloak.defaultRealm.clientScopes[5].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[5].attributes.\"include.in.token.scope\"                   | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[5].description                                           | string | `\"OpenID Connect web origins scope\"`           |             |\n| keycloak.defaultRealm.clientScopes[5].name                                                  | string | `\"web-origins\"`                                |             |\n| keycloak.defaultRealm.clientScopes[5].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[5].protocolMappers[0].config.\"access.token.claim\"        | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[5].protocolMappers[0].consentRequired                    | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clientScopes[5].protocolMappers[0].name                               | string | `\"allowed web origins\"`                        |             |\n| keycloak.defaultRealm.clientScopes[5].protocolMappers[0].protocol                           | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[5].protocolMappers[0].protocolMapper                     | string | `\"oidc-allowed-origins-mapper\"`                |             |\n| keycloak.defaultRealm.clientScopes[6].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[6].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[6].description                                           | string | `\"Permission to create documents\"`             |             |\n| keycloak.defaultRealm.clientScopes[6].name                                                  | string | `\"create:document\"`                            |             |\n| keycloak.defaultRealm.clientScopes[6].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[7].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[7].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[7].description                                           | string | `\"Permission to read documents\"`               |             |\n| keycloak.defaultRealm.clientScopes[7].name                                                  | string | `\"read:document\"`                              |             |\n| keycloak.defaultRealm.clientScopes[7].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[8].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[8].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[8].description                                           | string | `\"Permission to update documents\"`             |             |\n| keycloak.defaultRealm.clientScopes[8].name                                                  | string | `\"update:document\"`                            |             |\n| keycloak.defaultRealm.clientScopes[8].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clientScopes[9].attributes.\"display.on.consent.screen\"                | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clientScopes[9].attributes.\"include.in.token.scope\"                   | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clientScopes[9].description                                           | string | `\"Permission to delete documents\"`             |             |\n| keycloak.defaultRealm.clientScopes[9].name                                                  | string | `\"delete:document\"`                            |             |\n| keycloak.defaultRealm.clientScopes[9].protocol                                              | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[0].attributes.\"jwt.credential.issuer\"                         | string | `\"spiffe\"`                                     |             |\n| keycloak.defaultRealm.clients[0].attributes.\"jwt.credential.sub\"                            | string | `\"\"`                                           |             |\n| keycloak.defaultRealm.clients[0].attributes.\"post.logout.redirect.uris\"                     | string | `\"+\"`                                          |             |\n| keycloak.defaultRealm.clients[0].clientAuthenticatorType                                    | string | `\"federated-jwt\"`                              |             |\n| keycloak.defaultRealm.clients[0].clientId                                                   | string | `\"qtodo-app\"`                                  |             |\n| keycloak.defaultRealm.clients[0].defaultClientScopes[0]                                     | string | `\"web-origins\"`                                |             |\n| keycloak.defaultRealm.clients[0].defaultClientScopes[1]                                     | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clients[0].defaultClientScopes[2]                                     | string | `\"profile\"`                                    |             |\n| keycloak.defaultRealm.clients[0].defaultClientScopes[3]                                     | string | `\"basic\"`                                      |             |\n| keycloak.defaultRealm.clients[0].defaultClientScopes[4]                                     | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clients[0].directAccessGrantsEnabled                                  | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[0].enabled                                                    | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[0].fullScopeAllowed                                           | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[0].name                                                       | string | `\"qtodo\"`                                      |             |\n| keycloak.defaultRealm.clients[0].optionalClientScopes[0]                                    | string | `\"offline_access\"`                             |             |\n| keycloak.defaultRealm.clients[0].protocol                                                   | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[0].publicClient                                               | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[0].redirectUris[0]                                            | string | `\"*\"`                                          |             |\n| keycloak.defaultRealm.clients[0].serviceAccountsEnabled                                     | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[0].standardFlowEnabled                                        | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[0].webOrigins[0]                                              | string | `\"+\"`                                          |             |\n| keycloak.defaultRealm.clients[1].attributes.\"oauth2.device.authorization.grant.enabled\"     | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[1].clientId                                                   | string | `\"trusted-artifact-signer\"`                    |             |\n| keycloak.defaultRealm.clients[1].directAccessGrantsEnabled                                  | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[1].enabled                                                    | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[1].implicitFlowEnabled                                        | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[1].name                                                       | string | `\"Red Hat Trusted Artifact Signer Client\"`     |             |\n| keycloak.defaultRealm.clients[1].protocol                                                   | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[0].config.\"access.token.claim\"             | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[0].config.\"id.token.claim\"                 | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[0].config.\"included.client.audience\"       | string | `\"trusted-artifact-signer\"`                    |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[0].name                                    | string | `\"audience-mapper\"`                            |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[0].protocol                                | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[0].protocolMapper                          | string | `\"oidc-audience-mapper\"`                       |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].config.\"access.token.claim\"             | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].config.\"claim.name\"                     | string | `\"email_verified\"`                             |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].config.\"claim.value\"                    | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].config.\"id.token.claim\"                 | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].config.\"jsonType.label\"                 | string | `\"boolean\"`                                    |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].config.\"userinfo.token.claim\"           | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].consentRequired                         | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].name                                    | string | `\"email-mapper\"`                               |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].protocol                                | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[1].protocolMappers[1].protocolMapper                          | string | `\"oidc-hardcoded-claim-mapper\"`                |             |\n| keycloak.defaultRealm.clients[1].publicClient                                               | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[1].redirectUris[0]                                            | string | `\"*\"`                                          |             |\n| keycloak.defaultRealm.clients[1].redirectUris[1]                                            | string | `\"urn:ietf:wg:oauth:2.0:oob\"`                  |             |\n| keycloak.defaultRealm.clients[1].redirectUris[2]                                            | string | `\"http://localhost:*/auth/callback\"`           |             |\n| keycloak.defaultRealm.clients[1].standardFlowEnabled                                        | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[1].webOrigins[0]                                              | string | `\"+\"`                                          |             |\n| keycloak.defaultRealm.clients[2].clientId                                                   | string | `\"acs-central\"`                                |             |\n| keycloak.defaultRealm.clients[2].defaultClientScopes[0]                                     | string | `\"openid\"`                                     |             |\n| keycloak.defaultRealm.clients[2].defaultClientScopes[1]                                     | string | `\"basic\"`                                      |             |\n| keycloak.defaultRealm.clients[2].defaultClientScopes[2]                                     | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clients[2].defaultClientScopes[3]                                     | string | `\"profile\"`                                    |             |\n| keycloak.defaultRealm.clients[2].defaultClientScopes[4]                                     | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clients[2].defaultClientScopes[5]                                     | string | `\"web-origins\"`                                |             |\n| keycloak.defaultRealm.clients[2].directAccessGrantsEnabled                                  | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[2].enabled                                                    | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[2].fullScopeAllowed                                           | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[2].implicitFlowEnabled                                        | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[2].name                                                       | string | `\"Red Hat Advanced Cluster Security Central\"`  |             |\n| keycloak.defaultRealm.clients[2].optionalClientScopes[0]                                    | string | `\"address\"`                                    |             |\n| keycloak.defaultRealm.clients[2].optionalClientScopes[1]                                    | string | `\"phone\"`                                      |             |\n| keycloak.defaultRealm.clients[2].optionalClientScopes[2]                                    | string | `\"offline_access\"`                             |             |\n| keycloak.defaultRealm.clients[2].protocol                                                   | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].config.\"access.token.claim\"             | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].config.\"claim.name\"                     | string | `\"groups\"`                                     |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].config.\"full.path\"                      | string | `\"false\"`                                      |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].config.\"id.token.claim\"                 | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].config.\"userinfo.token.claim\"           | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].consentRequired                         | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].name                                    | string | `\"groups\"`                                     |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].protocol                                | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[0].protocolMapper                          | string | `\"oidc-group-membership-mapper\"`               |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].config.\"access.token.claim\"             | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].config.\"claim.name\"                     | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].config.\"id.token.claim\"                 | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].config.\"jsonType.label\"                 | string | `\"String\"`                                     |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].config.\"userinfo.token.claim\"           | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].config.multivalued                      | string | `\"true\"`                                       |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].consentRequired                         | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].name                                    | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].protocol                                | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[2].protocolMappers[1].protocolMapper                          | string | `\"oidc-usermodel-realm-role-mapper\"`           |             |\n| keycloak.defaultRealm.clients[2].publicClient                                               | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[2].redirectUris[0]                                            | string | `\"*\"`                                          |             |\n| keycloak.defaultRealm.clients[2].secret                                                     | string | `\"${ACS_CLIENT_SECRET}\"`                       |             |\n| keycloak.defaultRealm.clients[2].standardFlowEnabled                                        | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[2].webOrigins[0]                                              | string | `\"*\"`                                          |             |\n| keycloak.defaultRealm.clients[3].attributes.\"access.token.lifespan\"                         | string | `\"300\"`                                        |             |\n| keycloak.defaultRealm.clients[3].attributes.\"post.logout.redirect.uris\"                     | string | `\"+\"`                                          |             |\n| keycloak.defaultRealm.clients[3].clientId                                                   | string | `\"rhtpa-cli\"`                                  |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[0]                                     | string | `\"basic\"`                                      |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[1]                                     | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[2]                                     | string | `\"profile\"`                                    |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[3]                                     | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[4]                                     | string | `\"web-origins\"`                                |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[5]                                     | string | `\"create:document\"`                            |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[6]                                     | string | `\"read:document\"`                              |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[7]                                     | string | `\"update:document\"`                            |             |\n| keycloak.defaultRealm.clients[3].defaultClientScopes[8]                                     | string | `\"delete:document\"`                            |             |\n| keycloak.defaultRealm.clients[3].directAccessGrantsEnabled                                  | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[3].enabled                                                    | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[3].fullScopeAllowed                                           | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[3].implicitFlowEnabled                                        | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[3].name                                                       | string | `\"RHTPA CLI Client\"`                           |             |\n| keycloak.defaultRealm.clients[3].optionalClientScopes[0]                                    | string | `\"address\"`                                    |             |\n| keycloak.defaultRealm.clients[3].optionalClientScopes[1]                                    | string | `\"microprofile-jwt\"`                           |             |\n| keycloak.defaultRealm.clients[3].optionalClientScopes[2]                                    | string | `\"offline_access\"`                             |             |\n| keycloak.defaultRealm.clients[3].optionalClientScopes[3]                                    | string | `\"phone\"`                                      |             |\n| keycloak.defaultRealm.clients[3].protocol                                                   | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[3].publicClient                                               | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[3].secret                                                     | string | `\"${RHTPA_CLI_SECRET}\"`                        |             |\n| keycloak.defaultRealm.clients[3].serviceAccountsEnabled                                     | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[3].standardFlowEnabled                                        | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[4].attributes.\"access.token.lifespan\"                         | string | `\"300\"`                                        |             |\n| keycloak.defaultRealm.clients[4].attributes.\"post.logout.redirect.uris\"                     | string | `\"+\"`                                          |             |\n| keycloak.defaultRealm.clients[4].clientId                                                   | string | `\"rhtpa-frontend\"`                             |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[0]                                     | string | `\"basic\"`                                      |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[1]                                     | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[2]                                     | string | `\"profile\"`                                    |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[3]                                     | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[4]                                     | string | `\"web-origins\"`                                |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[5]                                     | string | `\"create:document\"`                            |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[6]                                     | string | `\"read:document\"`                              |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[7]                                     | string | `\"update:document\"`                            |             |\n| keycloak.defaultRealm.clients[4].defaultClientScopes[8]                                     | string | `\"delete:document\"`                            |             |\n| keycloak.defaultRealm.clients[4].directAccessGrantsEnabled                                  | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[4].enabled                                                    | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[4].fullScopeAllowed                                           | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[4].implicitFlowEnabled                                        | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[4].name                                                       | string | `\"RHTPA Frontend Client\"`                      |             |\n| keycloak.defaultRealm.clients[4].optionalClientScopes[0]                                    | string | `\"address\"`                                    |             |\n| keycloak.defaultRealm.clients[4].optionalClientScopes[1]                                    | string | `\"microprofile-jwt\"`                           |             |\n| keycloak.defaultRealm.clients[4].optionalClientScopes[2]                                    | string | `\"offline_access\"`                             |             |\n| keycloak.defaultRealm.clients[4].optionalClientScopes[3]                                    | string | `\"phone\"`                                      |             |\n| keycloak.defaultRealm.clients[4].protocol                                                   | string | `\"openid-connect\"`                             |             |\n| keycloak.defaultRealm.clients[4].publicClient                                               | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[4].redirectUris[0]                                            | string | `\"*\"`                                          |             |\n| keycloak.defaultRealm.clients[4].serviceAccountsEnabled                                     | bool   | `false`                                        |             |\n| keycloak.defaultRealm.clients[4].standardFlowEnabled                                        | bool   | `true`                                         |             |\n| keycloak.defaultRealm.clients[4].webOrigins[0]                                              | string | `\"*\"`                                          |             |\n| keycloak.defaultRealm.defaultDefaultClientScopes[0]                                         | string | `\"openid\"`                                     |             |\n| keycloak.defaultRealm.defaultDefaultClientScopes[1]                                         | string | `\"basic\"`                                      |             |\n| keycloak.defaultRealm.defaultDefaultClientScopes[2]                                         | string | `\"email\"`                                      |             |\n| keycloak.defaultRealm.defaultDefaultClientScopes[3]                                         | string | `\"profile\"`                                    |             |\n| keycloak.defaultRealm.defaultDefaultClientScopes[4]                                         | string | `\"roles\"`                                      |             |\n| keycloak.defaultRealm.defaultDefaultClientScopes[5]                                         | string | `\"web-origins\"`                                |             |\n| keycloak.defaultRealm.displayName                                                           | string | `\"ZTVP Realm\"`                                 |             |\n| keycloak.defaultRealm.enabled                                                               | bool   | `true`                                         |             |\n| keycloak.defaultRealm.realm                                                                 | string | `\"ztvp\"`                                       |             |\n| keycloak.defaultRealm.registrationAllowed                                                   | bool   | `false`                                        |             |\n| keycloak.defaultRealm.roles.realm[0].description                                            | string | `\"QTodo App Administrator\"`                    |             |\n| keycloak.defaultRealm.roles.realm[0].name                                                   | string | `\"qtodo-admin\"`                                |             |\n| keycloak.defaultRealm.roles.realm[1].description                                            | string | `\"Read-only access\"`                           |             |\n| keycloak.defaultRealm.roles.realm[1].name                                                   | string | `\"viewer\"`                                     |             |\n| keycloak.defaultRealm.roles.realm[2].description                                            | string | `\"RHTPA SBOM Creator\"`                         |             |\n| keycloak.defaultRealm.roles.realm[2].name                                                   | string | `\"create:sbom\"`                                |             |\n| keycloak.defaultRealm.roles.realm[3].description                                            | string | `\"RHTPA Document Creator\"`                     |             |\n| keycloak.defaultRealm.roles.realm[3].name                                                   | string | `\"create:document\"`                            |             |\n| keycloak.defaultRealm.roles.realm[4].description                                            | string | `\"ACS Administrator\"`                          |             |\n| keycloak.defaultRealm.roles.realm[4].name                                                   | string | `\"acs-admin\"`                                  |             |\n| keycloak.defaultRealm.users[0].createdTimestamp                                             | int    | `1`                                            |             |\n| keycloak.defaultRealm.users[0].credentials[0].temporary                                     | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[0].credentials[0].type                                          | string | `\"password\"`                                   |             |\n| keycloak.defaultRealm.users[0].credentials[0].value                                         | string | `\"${QTODO_ADMIN_PASSWORD}\"`                    |             |\n| keycloak.defaultRealm.users[0].email                                                        | string | `\"qtodo-admin@example.com\"`                    |             |\n| keycloak.defaultRealm.users[0].emailVerified                                                | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[0].enabled                                                      | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[0].firstName                                                    | string | `\"QTodo\"`                                      |             |\n| keycloak.defaultRealm.users[0].lastName                                                     | string | `\"Admin\"`                                      |             |\n| keycloak.defaultRealm.users[0].realmRoles[0]                                                | string | `\"qtodo-admin\"`                                |             |\n| keycloak.defaultRealm.users[0].requiredActions[0]                                           | string | `\"UPDATE_PASSWORD\"`                            |             |\n| keycloak.defaultRealm.users[0].username                                                     | string | `\"qtodo-admin\"`                                |             |\n| keycloak.defaultRealm.users[1].createdTimestamp                                             | int    | `1`                                            |             |\n| keycloak.defaultRealm.users[1].credentials[0].temporary                                     | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[1].credentials[0].type                                          | string | `\"password\"`                                   |             |\n| keycloak.defaultRealm.users[1].credentials[0].value                                         | string | `\"${QTODO_USER1_PASSWORD}\"`                    |             |\n| keycloak.defaultRealm.users[1].email                                                        | string | `\"qtodo-user1@example.com\"`                    |             |\n| keycloak.defaultRealm.users[1].emailVerified                                                | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[1].enabled                                                      | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[1].firstName                                                    | string | `\"QTodo\"`                                      |             |\n| keycloak.defaultRealm.users[1].lastName                                                     | string | `\"User-1\"`                                     |             |\n| keycloak.defaultRealm.users[1].realmRoles[0]                                                | string | `\"viewer\"`                                     |             |\n| keycloak.defaultRealm.users[1].requiredActions[0]                                           | string | `\"UPDATE_PASSWORD\"`                            |             |\n| keycloak.defaultRealm.users[1].username                                                     | string | `\"qtodo-user1\"`                                |             |\n| keycloak.defaultRealm.users[2].createdTimestamp                                             | int    | `1`                                            |             |\n| keycloak.defaultRealm.users[2].credentials[0].temporary                                     | bool   | `false`                                        |             |\n| keycloak.defaultRealm.users[2].credentials[0].type                                          | string | `\"password\"`                                   |             |\n| keycloak.defaultRealm.users[2].credentials[0].value                                         | string | `\"${RHTAS_USER_PASSWORD}\"`                     |             |\n| keycloak.defaultRealm.users[2].email                                                        | string | `\"rhtas-user@example.com\"`                     |             |\n| keycloak.defaultRealm.users[2].emailVerified                                                | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[2].enabled                                                      | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[2].firstName                                                    | string | `\"RHTAS\"`                                      |             |\n| keycloak.defaultRealm.users[2].lastName                                                     | string | `\"Signer\"`                                     |             |\n| keycloak.defaultRealm.users[2].realmRoles[0]                                                | string | `\"viewer\"`                                     |             |\n| keycloak.defaultRealm.users[2].username                                                     | string | `\"rhtas-user\"`                                 |             |\n| keycloak.defaultRealm.users[3].createdTimestamp                                             | int    | `1`                                            |             |\n| keycloak.defaultRealm.users[3].credentials[0].temporary                                     | bool   | `false`                                        |             |\n| keycloak.defaultRealm.users[3].credentials[0].type                                          | string | `\"password\"`                                   |             |\n| keycloak.defaultRealm.users[3].credentials[0].value                                         | string | `\"${RHTPA_USER_PASSWORD}\"`                     |             |\n| keycloak.defaultRealm.users[3].email                                                        | string | `\"rhtpa-user@example.com\"`                     |             |\n| keycloak.defaultRealm.users[3].emailVerified                                                | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[3].enabled                                                      | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[3].firstName                                                    | string | `\"RHTPA\"`                                      |             |\n| keycloak.defaultRealm.users[3].lastName                                                     | string | `\"User\"`                                       |             |\n| keycloak.defaultRealm.users[3].realmRoles[0]                                                | string | `\"viewer\"`                                     |             |\n| keycloak.defaultRealm.users[3].realmRoles[1]                                                | string | `\"create:sbom\"`                                |             |\n| keycloak.defaultRealm.users[3].realmRoles[2]                                                | string | `\"create:document\"`                            |             |\n| keycloak.defaultRealm.users[3].username                                                     | string | `\"rhtpa-user\"`                                 |             |\n| keycloak.defaultRealm.users[4].createdTimestamp                                             | int    | `1`                                            |             |\n| keycloak.defaultRealm.users[4].credentials[0].temporary                                     | bool   | `false`                                        |             |\n| keycloak.defaultRealm.users[4].credentials[0].type                                          | string | `\"password\"`                                   |             |\n| keycloak.defaultRealm.users[4].credentials[0].value                                         | string | `\"${ACS_ADMIN_PASSWORD}\"`                      |             |\n| keycloak.defaultRealm.users[4].email                                                        | string | `\"admin@example.com\"`                          |             |\n| keycloak.defaultRealm.users[4].emailVerified                                                | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[4].enabled                                                      | bool   | `true`                                         |             |\n| keycloak.defaultRealm.users[4].firstName                                                    | string | `\"ACS\"`                                        |             |\n| keycloak.defaultRealm.users[4].lastName                                                     | string | `\"Administrator\"`                              |             |\n| keycloak.defaultRealm.users[4].realmRoles[0]                                                | string | `\"acs-admin\"`                                  |             |\n| keycloak.defaultRealm.users[4].realmRoles[1]                                                | string | `\"offline_access\"`                             |             |\n| keycloak.defaultRealm.users[4].username                                                     | string | `\"admin\"`                                      |             |\n| keycloak.ingress.enabled                                                                    | bool   | `true`                                         |             |\n| keycloak.ingress.hostname                                                                   | string | `\"\"`                                           |             |\n| keycloak.ingress.service                                                                    | string | `\"keycloak-service-trusted\"`                   |             |\n| keycloak.ingress.termination                                                                | string | `\"reencrypt\"`                                  |             |\n| keycloak.name                                                                               | string | `\"keycloak\"`                                   |             |\n| keycloak.oidcSecrets.acsClient.vaultPath                                                    | string | `\"secret/data/hub/infra/acs/acs-central\"`      |             |\n| keycloak.oidcSecrets.qtodo.enabled                                                          | bool   | `false`                                        |             |\n| keycloak.oidcSecrets.qtodo.vaultPath                                                        | string | `\"secret/data/apps/qtodo/qtodo-oidc-client\"`   |             |\n| keycloak.oidcSecrets.rhtpaCli.vaultPath                                                     | string | `\"secret/data/hub/infra/rhtpa/rhtpa-oidc-cli\"` |             |\n| keycloak.postgresqlDb.database                                                              | string | `\"keycloak\"`                                   |             |\n| keycloak.postgresqlDb.passwordVaultKey                                                      | string | `\"secret/data/hub/infra/keycloak/keycloak\"`    |             |\n| keycloak.postgresqlDb.secretName                                                            | string | `\"postgresql-db\"`                              |             |\n| keycloak.postgresqlDb.username                                                              | string | `\"keycloak\"`                                   |             |\n| keycloak.realms                                                                             | list   | `[]`                                           |             |\n| keycloak.spiffeIdentityProvider.config.alias                                                | string | `\"spiffe\"`                                     |             |\n| keycloak.spiffeIdentityProvider.config.config.authorizationUrl                              | string | `\"\"`                                           |             |\n| keycloak.spiffeIdentityProvider.config.config.clientId                                      | string | `\"keycloak\"`                                   |             |\n| keycloak.spiffeIdentityProvider.config.config.clientSecret                                  | string | `\"unused\"`                                     |             |\n| keycloak.spiffeIdentityProvider.config.config.issuer                                        | string | `\"\"`                                           |             |\n| keycloak.spiffeIdentityProvider.config.config.jwksUrl                                       | string | `\"\"`                                           |             |\n| keycloak.spiffeIdentityProvider.config.config.supportsClientAssertionReuse                  | string | `\"true\"`                                       |             |\n| keycloak.spiffeIdentityProvider.config.config.supportsClientAssertions                      | string | `\"true\"`                                       |             |\n| keycloak.spiffeIdentityProvider.config.config.syncMode                                      | string | `\"LEGACY\"`                                     |             |\n| keycloak.spiffeIdentityProvider.config.config.tokenUrl                                      | string | `\"\"`                                           |             |\n| keycloak.spiffeIdentityProvider.config.config.useJwksUrl                                    | string | `\"true\"`                                       |             |\n| keycloak.spiffeIdentityProvider.config.config.validateSignature                             | string | `\"true\"`                                       |             |\n| keycloak.spiffeIdentityProvider.config.displayName                                          | string | `\"SPIFFE Workload Identity\"`                   |             |\n| keycloak.spiffeIdentityProvider.config.enabled                                              | bool   | `true`                                         |             |\n| keycloak.spiffeIdentityProvider.config.hideOnLogin                                          | bool   | `true`                                         |             |\n| keycloak.spiffeIdentityProvider.config.providerId                                           | string | `\"oidc\"`                                       |             |\n| keycloak.spiffeIdentityProvider.enabled                                                     | bool   | `true`                                         |             |\n| keycloak.tls.secret                                                                         | string | `\"keycloak-tls\"`                               |             |\n| keycloak.tls.serviceServing                                                                 | bool   | `true`                                         |             |\n| keycloak.users.passwordVaultKey                                                             | string | `\"secret/data/hub/infra/users/keycloak-users\"` |             |\n| keycloak.users.secretName                                                                   | string | `\"keycloak-users\"`                             |             |\n\n\u003c!-- markdownlint-enable MD013 MD034 MD060 --\u003e\n\n---\n\nAutogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvalidatedpatterns%2Frhbk-chart","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fvalidatedpatterns%2Frhbk-chart","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvalidatedpatterns%2Frhbk-chart/lists"}