remove sm tls config

28812006 · kevin.wilder · d9625130 · 28812006
Verified Commit 28812006 authored 2 years ago by kevin.wilder
--- a/chart/templates/keycloak/values.yaml
+++ b/chart/templates/keycloak/values.yaml
@@ -45,16 +45,17 @@ monitoring:
  enabled: {{ .Values.monitoring.enabled }}
 serviceMonitor:
  enabled: {{ .Values.monitoring.enabled }}
+  # not able to get servicemonitor working with tlsConfig. Leaving it here for future work.
  # conditional passes only for default istio: enabled, mTLS: SCRICT, istio injection: enabled
-  {{- if and $istioInjection (eq (dig "istio" "mtls" "mode" "STRICT" .Values.addons.keycloak.values) "STRICT") }}
-  scheme: https
-  tlsConfig:
-    caFile: /etc/prom-certs/root-cert.pem
-    certFile: /etc/prom-certs/cert-chain.pem
-    keyFile: /etc/prom-certs/key.pem
-    # Prometheus does not support Istio security naming, thus skip verifying target pod certificate
-    insecureSkipVerify: true
-  {{- end }}
+  # {{- if and $istioInjection (eq (dig "istio" "mtls" "mode" "STRICT" .Values.addons.keycloak.values) "STRICT") }}
+  # scheme: https
+  # tlsConfig:
+  #   caFile: /etc/prom-certs/root-cert.pem
+  #   certFile: /etc/prom-certs/cert-chain.pem
+  #   keyFile: /etc/prom-certs/key.pem
+  #   # Prometheus does not support Istio security naming, thus skip verifying target pod certificate
+  #   insecureSkipVerify: true
+  # {{- end }}

 {{- if .Values.addons.keycloak.database.host }}
 postgresql: