keycloak: allow MAS secret apply read access

2026-01-08 02:19:21 -03:00 · 2026-01-08 02:19:21 -03:00 · e9fb11af40
commit e9fb11af40
parent afce04b9b2
1 changed files with 2 additions and 2 deletions
--- a/services/keycloak/mas-secrets-ensure-job.yaml
+++ b/services/keycloak/mas-secrets-ensure-job.yaml
@ -8,7 +8,7 @@ metadata:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: mas-secrets-ensure-3
+  name: mas-secrets-ensure-4
  namespace: sso
 spec:
  backoffLimit: 2
@ -66,7 +66,7 @@ spec:
              openssl rand -base64 32 > /work/encryption
              openssl rand -hex 32 > /work/matrix_shared_secret
              openssl genpkey -algorithm RSA -pkeyopt rsa_keygen_bits:4096 -out /work/rsa_key >/dev/null 2>&1
-              chmod 0600 /work/*
+              chmod 0644 /work/*
          env:
            - name: KEYCLOAK_ADMIN
              valueFrom: