Skip to content

Commit de4b442

Browse files
authored
Merge e5959a4 into 044c224
2 parents 044c224 + e5959a4 commit de4b442

28 files changed

+1841
-545
lines changed

charts/data-space-connector/Chart.yaml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -11,11 +11,11 @@ dependencies:
1111
# authentication
1212
- name: vcverifier
1313
condition: vcverifier.enabled
14-
version: 4.1.2
14+
version: 4.3.0
1515
repository: https://fiware.github.io/helm-charts
1616
- name: credentials-config-service
1717
condition: credentials-config-service.enabled
18-
version: 2.1.12
18+
version: 2.3.0
1919
repository: https://fiware.github.io/helm-charts
2020
- name: trusted-issuers-list
2121
condition: trusted-issuers-list.enabled
@@ -33,7 +33,7 @@ dependencies:
3333
# authorization
3434
- name: odrl-pap
3535
condition: odrl-pap.enabled
36-
version: 2.0.2
36+
version: 2.3.0
3737
repository: https://fiware.github.io/helm-charts
3838
- name: apisix
3939
condition: apisix.enabled
@@ -53,16 +53,16 @@ dependencies:
5353
# issuance
5454
- name: keycloak
5555
condition: keycloak.enabled
56-
version: 24.5.2
56+
version: 25.2.0
5757
repository: oci://registry-1.docker.io/bitnamicharts
5858
# contract management
5959
- name: tm-forum-api
6060
condition: tm-forum-api.enabled
61-
version: 0.14.11
61+
version: 0.14.14
6262
repository: https://fiware.github.io/helm-charts
6363
- name: contract-management
6464
condition: contract-management.enabled
65-
version: 3.2.0
65+
version: 3.5.6
6666
repository: https://fiware.github.io/helm-charts
6767
# marketplace
6868
- name: business-api-ecosystem

charts/data-space-connector/templates/did-cm.yaml

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,8 +22,15 @@ data:
2222
{{- else }}
2323
"kty: "RSA",
2424
{{- end }}
25+
{{- if eq .Values.didJson.key.kty "RSA" }}
2526
"e": {{ .Values.didJson.key.exponent | quote }},
2627
"n": {{ .Values.didJson.key.modulus | quote }},
28+
{{- end }}
29+
{{- if eq .Values.didJson.key.kty "EC" }}
30+
"crv": {{ .Values.didJson.key.crv | quote }},
31+
"x": {{ .Values.didJson.key.xCoord | quote }},
32+
"y": {{ .Values.didJson.key.yCoord | quote }},
33+
{{- end }}
2734
{{- if .Values.didJson.key.x5u }}
2835
"x5u": {{ .Values.didJson.key.x5u | quote }}
2936
{{- else }}

charts/data-space-connector/templates/did-ingress.yaml

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -5,11 +5,19 @@ metadata:
55
name: did-json
66
namespace: {{ $.Release.Namespace | quote }}
77
annotations:
8-
traefik.ingress.kubernetes.io/router.tls: "true"
8+
{{- with .Values.didJson.ingress.annotations }}
9+
{{- toYaml . | nindent 4 }}
10+
{{- end }}
911
traefik.ingress.kubernetes.io/service.passhostheader: "true"
1012
labels:
1113
{{ include "dsc.labels" . | nindent 4 }}
1214
spec:
15+
{{- if .Values.didJson.ingress.tlsSecret }}
16+
tls:
17+
- hosts:
18+
- {{ .Values.didJson.ingress.host }}
19+
secretName: {{ .Values.didJson.ingress.tlsSecret }}
20+
{{- end }}
1321
rules:
1422
- host: {{ .Values.didJson.ingress.host }}
1523
http:

charts/data-space-connector/templates/participant-registration.yaml

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -13,9 +13,7 @@ data:
1313
{{ .Values.registration.prepScript }}
1414
{{- end }}
1515
{{- $registration := .Values.registration}}
16-
{{- range $index, $credentialType := .Values.registration.credentialTypes }}
1716
18-
# credentials config service registration
1917
curl -v -X 'POST' \
2018
'{{ $registration.til }}/issuer' \
2119
-H 'accept: */*' \
@@ -31,6 +29,5 @@ data:
3129
{{- end }}
3230
]
3331
}"
34-
{{- end }}
3532
3633
{{- end }}

charts/data-space-connector/templates/realm.yaml

Lines changed: 29 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -11,8 +11,8 @@ data:
1111
{
1212
"id": "{{ .Values.keycloak.realm.name }}",
1313
"realm": "{{ .Values.keycloak.realm.name }}",
14-
"displayName": "Keycloak",
15-
"displayNameHtml": "<div class=\"kc-logo-text\"><span>Keycloak</span></div>",
14+
"displayName": "{{ .Values.keycloak.realm.name }}",
15+
"displayNameHtml": "<div class=\"kc-logo-text\"><span>{{ .Values.keycloak.realm.name }}</span></div>",
1616
"verifiableCredentialsEnabled": true,
1717
"enabled": true,
1818
"attributes": {
@@ -630,9 +630,33 @@ data:
630630
"providerId": "jwt_vc"
631631
}
632632
],
633-
634-
{{- if eq .Values.elsi.enabled true }}
635633
"org.keycloak.keys.KeyProvider": [
634+
{
635+
"name": "ecdh-generated",
636+
"providerId": "ecdh-generated",
637+
"subComponents": {},
638+
"config": {
639+
"ecGenerateCertificate": [
640+
"false"
641+
],
642+
"active": [
643+
"true"
644+
],
645+
"priority": [
646+
"0"
647+
],
648+
"ecdhAlgorithm": [
649+
"ECDH-ES"
650+
],
651+
"ecdhEllipticCurveKey": [
652+
"P-256"
653+
],
654+
"enabled": [
655+
"true"
656+
]
657+
}
658+
},
659+
{{- if eq .Values.elsi.enabled true }}
636660
{
637661
"id": "a4589e8f-7f82-4345-b2ea-ccc9d4366600",
638662
"name": {{ .Values.elsi.keyAlias | quote }},
@@ -658,9 +682,7 @@ data:
658682
]
659683
}
660684
}
661-
]
662685
{{- else if .Values.keycloak.signingKey }}
663-
"org.keycloak.keys.KeyProvider": [
664686
{
665687
"id": "a4589e8f-7f82-4345-b2ea-ccc9d4366600",
666688
"name": "signing-key",
@@ -690,9 +712,7 @@ data:
690712
]
691713
}
692714
}
693-
]
694715
{{ else }}
695-
"org.keycloak.keys.KeyProvider": [
696716
{
697717
"id": "a4589e8f-7f82-4345-b2ea-ccc9d4366600",
698718
"name": "test-key",
@@ -718,8 +738,8 @@ data:
718738
]
719739
}
720740
}
721-
]
722741
{{- end }}
742+
]
723743
}
724744
}
725745

charts/data-space-connector/values.yaml

Lines changed: 8 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -479,12 +479,15 @@ keycloak:
479479
image:
480480
# -- repository where the image is held, see https://github.com/bitnami/charts/issues/35164 for further info
481481
repository: bitnamilegacy/keycloak
482-
tag: 26.3.2-debian-12-r0
483482
# -- disable the security context, required by the current quarkus container, will be solved in the future chart versions of keycloak
484483
containerSecurityContext:
485484
enabled: false
486485
proxyHeaders: xforwarded
487486
proxy: edge
487+
logging:
488+
level: DEBUG
489+
tls:
490+
enabled: false
488491
service:
489492
ports:
490493
http: 8080
@@ -523,8 +526,6 @@ keycloak:
523526

524527
# -- extra env vars to be set. we require them at the moment, since some of the chart config mechanisms only work with the bitnami-image
525528
extraEnvVars:
526-
- name: KEYCLOAK_LOG_LEVEL
527-
value: INFO
528529
- name: KEYCLOAK_EXTRA_ARGS
529530
value: "--import-realm"
530531
- name: KC_FEATURES
@@ -611,6 +612,7 @@ keycloak:
611612
"frontchannelLogout": false,
612613
"protocol": "oid4vc",
613614
"attributes": {
615+
"oid4vci.enabled": true,
614616
"client.secret.creation.time": "1675260539",
615617
"vc.natural-person.format": "jwt_vc",
616618
"vc.natural-person.scope": "NaturalPersonCredential",
@@ -851,6 +853,8 @@ contract-management:
851853
# -- should it be enabled? set to false if one outside the chart is used.
852854
enabled: true
853855
fullnameOverride: contract-management
856+
til:
857+
credentialType: OperatorCredential
854858
services:
855859
## Config for Trusted Issuers List
856860
trusted-issuers-list:
@@ -881,6 +885,7 @@ contract-management:
881885
odrl:
882886
## URL to the ODRL-PAP
883887
url: http://odrl-pap:8080
888+
884889

885890
# -- configuration for the did-helper, should only be used for demonstrational deployments, see https://github.com/wistefan/did-helper
886891
did:
@@ -889,7 +894,6 @@ did:
889894
# -- configuration for registering a participant at the til, will most probably only be used in demonstrational enviornments
890895
registration:
891896
enabled: false
892-
prepScript: "test"
893897

894898
# -- configuration for the .well-known/data-space-configuration endpoint document
895899
dataSpaceConfig:

0 commit comments

Comments
 (0)