feat: add init container for oauth2 proxy (#1779)

srodenhuis · j-zimnowoda · web-flow · commit e3886cc7e033 · 2024-10-28T15:38:32.000Z
Co-authored-by: jeho &lt;17126497+j-zimnowoda@users.noreply.github.com&gt;
diff --git a/charts/oauth2-proxy/templates/deployment.yaml b/charts/oauth2-proxy/templates/deployment.yaml
@@ -100,6 +100,10 @@ spec:
       {{- if .Values.terminationGracePeriodSeconds }}
       terminationGracePeriodSeconds: {{ .Values.terminationGracePeriodSeconds }}
       {{- end }}
+# The .Values.extraInitContainers is not supported by the upstream chart!
+{{- if .Values.extraInitContainers }}
+  {{- toYaml .Values.extraInitContainers | nindent 6 }}
+{{- end }}
       containers:
       - name: {{ .Chart.Name }}
         image: "{{ .Values.image.repository }}:{{ include "oauth2-proxy.version" . }}"
diff --git a/charts/oauth2-proxy/values.yaml b/charts/oauth2-proxy/values.yaml
@@ -215,6 +215,9 @@ extraContainers: []
   #  - name: my-sidecar
   #    image: nginx:latest
 
+# The extraInitContainers is not supported by the upstream chart!
+extraInitContainers: []
+
 priorityClassName: ""
 
 # hostAliases is a list of aliases to be added to /etc/hosts for network name resolution
diff --git a/values/oauth2-proxy/oauth2-proxy.gotmpl b/values/oauth2-proxy/oauth2-proxy.gotmpl
@@ -79,6 +79,12 @@ extraVolumeMounts:
     mountPath: /etc/oauth2-proxy/error.html
     subPath: error.html
 
+extraInitContainers:
+  - name: wait-for-keycloak
+    image: curlimages/curl:latest
+    command: ["/bin/sh","-c"]
+    args: ["while [ $(curl -sw '%{http_code}' {{ $v._derived.oidcBaseUrl }} -o /dev/null) -ne 200 ]; do sleep 2; echo 'Waiting for Keycloak OIDC Issuer URL'; done"]
+
 {{- with .Values.otomi | get "globalPullSecret" nil }}
 imagePullSecrets:
   - name: otomi-pullsecret-global
