Parameters

The parent key for all of the following parameters is group_sync_operator.

`namespace`

type	string
default	`syn-group-sync-operator`

The namespace in which to deploy this component.

`images`

type	dictionary

Dictionary containing the container images used by this component.

`sync`

type	dict
default	{}

The configuration for group synchronization. This is a map of group synchronization schedule configurations, which will each be converted to a GroupSync object.

`sync[].schedule`

type

string

A crontab based schedule configuration, for when to synchronize the groups. If no schedule is provided, synchronization will only occur when the GroupSync object is reconciled by the platform.

`sync[].deleteDisappearedGroups`

type	bool
default	false

Controls if groups disappeared from the source should be removed. The deletion of groups is provider scoped.

`sync[].providers`

type

dict

Provider configuration for the group synchronization. Each will be converted to a provider configuration entry in the GroupSync resource. Keys in the dict are used as value for field name in the resulting provider configuration. Consult the official documentation on how to configure your provider.

For the provider credentials you have the option to create the secret through the secrets key. You can directly reference this secret as a credentialsSecret without having to specify the namespace.

`secrets`

type	dict
default	{}

Secrets to create in the components namespace. The dictionary values are directly merged into the Secret resource and the Keys in the dict are used as the name.

Example

parameters:
  group_sync_operator:
    sync:
      foo:
        schedule: '* * * * *'
        providers:
          keycloak:
            keycloak: (1)
              url: https://id.company.io
              credentialsSecret:
                name: foo-keycloak (2)
              loginRealm: foo-public
              realm: foo-public
              scope: sub
      bar:
        schedule: '* * 2 * *'
        deleteDisappearedGroups: true
        providers:
          bar-azure:
            azure:
              credentialsSecret:
                name: bar-azure-credentials

    secrets:
      foo-keycloak: (3)
        stingData:
          username: foo
          password: bar
      bar-azure-credentials:
        stingData:
          AZURE_TENANT_ID: 1a
          AZURE_CLIENT_ID: foobar
          AZURE_CLIENT_SECRET: secret

1	Configuration according to the official documentation.
2	References the secret created at (3)
3	Creates a secret with name `foo-keycloak`