kubectl create configmap certificates --from-file=cacerts=path/to/your/certs
kubectl patch deployment keycloak -p '{"spec": {"template": {"spec": {"volumes": [{"name": "certificates", "configMap": {"name": "certificates"}}], "containers": [{"name": "keycloak", "volumeMounts": [{"name": "certificates", "mountPath": "/etc/ssl/certs/java/cacerts"}]}]}}}'
kubectl patch deployment keycloak -p '{"spec": {"template": {"spec": {"containers": [{"name": "keycloak", "env": [{"name": "JAVA_OPTS", "value": "-Xms64m -Xmx512m -XX:MetaspaceSize=96M -XX:MaxMetaspaceSize=256m - Dfile.encoding=UTF-8 -Dsun.stdout.encoding=UTF-8 -Dsun.err.encoding=UTF-8 - Dstdout.encoding=UTF-8 -Dstderr.encoding=UTF-8 -XX:+ExitOnOutOfMemoryError - Djava.security.egd=file:/dev/urandom -XX:+UseParallelGC - XX:MinHeapFreeRatio=10 -XX:MaxHeapFreeRatio=20 -XX:GCTimeRatio=4 - XX:AdaptiveSizePolicyWeight=90 - Djavax.net.ssl.trustStorePassword=password"}]}]}}}'
