Open greyarch opened 1 week ago
Breee
commented
1 week ago Greetings,
You should be able to create the Ressource you want to reference in "Observe Only" Mode, for that lookup Management policies.
If you have more questions or Problems let me know
https://docs.crossplane.io/latest/guides/import-existing-resources/
greyarch
commented
1 week ago Hey @Breee, thanks for the swift response!
Unfortunately, I still cannot make it work. I have this object now:
apiVersion: openidclient.keycloak.crossplane.io/v1alpha1
kind: ClientScope
metadata:
name: my-scope
spec:
managementPolicies: ["Observe"]
forProvider:
realmId: "existing-realm"
name: "profile"
providerConfigRef:
name: "dev" and I get:
Warning CannotObserveExternalResource 1s (x2 over 10s) managed/openidclient.keycloak.crossplane.io/v1alpha1, kind=clientscope external resource does not exist
The realm exists and there is a client scope called "profile", created by default (not by me, this is a built-in scope) when the realm is created. What am I missing?
Hey guys, great work so far!
I have the following problem:
I want to add a mapper to an existing client scope, namely the "profile" client scope.
This works fine if I use the clientScopeId, but this is not really a solution since the scope id is random uuid.
Furthermore, I cannot match by label (using clientScopeIdSelector) since I am not creating the client scope, and there is no kuberentes/crossplane resource that corresponds to the scope.
I expected to be able to use clientScopeIdRef.name but this also seems to refer to the name of a kubernetes object and not the name of the client scope in keycloak.
I tried to create a ClientScope resource, that will not create the scope but will just reference it. This is, however, not possible - te provider tries to always create objects and if they already exist, it gives 409.
So... how should I do that?
Cheers!