parent: c1340530 | patch | commit | ignore whitespace
James Falkner
2020-02-22 c9f04960f211d61e8a5ec208aa9b54e9159a6523 
increase codeready keycloak token lifespan (#1170)

* increase codeready keycloak token lifespan

* reduce memory to avoid timeouts/errors
2 files modified
45 ■■■■■ changed files
ansible/roles/ocp4-workload-ccnrd/tasks/install-codeready.yaml 31 ●●●● patch | view | raw | blame | history
ansible/roles/ocp4-workload-ccnrd/templates/devfile.json.j2 14 ●●●●● patch | view | raw | blame | history 
 ansible/roles/ocp4-workload-ccnrd/tasks/install-codeready.yaml


@@ -116,18 +116,35 @@


    user: "{{ item }}"


  with_list: "{{ users }}"




- name: Get Codeready admin token


- name: Get codeready SSO admin token


  uri:


    url: http://keycloak-labs-infra.{{ route_subdomain }}/auth/realms/codeready/protocol/openid-connect/token


    url: http://keycloak-labs-infra.{{ route_subdomain }}/auth/realms/master/protocol/openid-connect/token


    method: POST


    body:


      username: admin


      password: admin


      username: "{{ codeready_sso_admin_username }}"


      password: "{{ codeready_sso_admin_password }}"


      grant_type: "password"


      client_id: "admin-cli"


    body_format: form-urlencoded


    status_code: 200,201,204


  register: che_admin_token


  register: codeready_sso_admin_token




- name: Increase codeready access token lifespans


  uri:


    url: http://keycloak-labs-infra.{{ route_subdomain }}/auth/admin/realms/codeready


    method: PUT


    headers:


      Content-Type: application/json


      Authorization: "Bearer {{ codeready_sso_admin_token.json.access_token }}"


    body:


      accessTokenLifespan: 28800


      accessTokenLifespanForImplicitFlow: 28800


      actionTokenGeneratedByUserLifespan: 28800


      ssoSessionIdleTimeout: 28800


      ssoSessionMaxLifespan: 28800


    body_format: json


    status_code: 204






- name: Import stack imagestream


  k8s:


@@ -154,9 +171,9 @@


  shell: |


    oc import-image --all quarkus-stack -n openshift




- name: wait a minute and let the image download and be registered so workspaces start up


- name: wait 2 minutes and let the image download and be registered so workspaces start up


  pause:


      minutes: 1


      minutes: 2




- name: Pre-create and warm user workspaces


  include_tasks: create_che_workspace.yaml




 ansible/roles/ocp4-workload-ccnrd/templates/devfile.json.j2


@@ -10,7 +10,7 @@


    },


    {


      "mountSources": true,


      "memoryLimit": "4Gi",


      "memoryLimit": "3Gi",


      "type": "dockerimage",


      "volumes": [


        {


@@ -50,18 +50,6 @@


          }


        }


      ]


    },


    {


      "id": "redhat/vscode-yaml/latest",


      "type": "chePlugin"


    },


    {


      "id": "redhat/vscode-openshift-connector/latest",


      "type": "chePlugin"


    },


    {


      "id": "ms-kubernetes-tools/vscode-kubernetes-tools/latest",


      "type": "chePlugin"


    }


  ],


  "commands": [