Instead of having ZITADEL set up with a human user with the IAM_ADMIN
role, you can also set up ZITADEL with a machine user.
For accessing the ZITADEL API immediately after the installation, you can have ZITADEL either create a personal access token or a machine key of type JSON.
The chart creates a Kubernetes secret with the machine user credentials on the first installation of the chart for further use.
With this, you can automate the setup of ZITADEL along with ZITADEL resources like projects, users, and more from scratch.
To achieve a fully declared ZITADEL setup, also check out the ZITADEL Terraform provider.
By running the commands below, you deploy a simple insecure Postgres database to your Kubernetes cluster by using the Bitnami chart. Also, you deploy a correctly configured ZITADEL.
[!WARNING] Anybody with network access to the Postgres database can connect to it and read and write data. Use this example only for testing purposes. For deploying a secure Postgres database, see the secure Postgres example.
# Install Postgres
helm repo add bitnami https://charts.bitnami.com/bitnami
helm install --wait db bitnami/postgresql --version 12.10.0 --values https://raw.githubusercontent.com/zitadel/zitadel-charts/main/examples/6-machine-user/postgres-values.yaml
# Install ZITADEL
helm repo add zitadel https://charts.zitadel.com
helm install my-zitadel zitadel/zitadel --values https://raw.githubusercontent.com/zitadel/zitadel-charts/main/examples/6-machine-user/zitadel-values.yaml
When ZITADEL is ready, you can access the GUI via port-forwarding:
kubectl port-forward svc/my-zitadel 8080
Now, open http://127.0.0.1.sslip.io:8080 in your browser and log in with the following credentials:
Username: zitadel-admin@zitadel.127.0.0.1.sslip.io Password: Password1!