I got burned using the k8s operator a while back. The old one, that had custom resource definitions for instances, realms, clients & users was deprecated and the new one is still so far behind in functionality that it's unusable for my purposes. (Iirc even setting up a custom ingress beyond the hostname was a pain, and setting up realms only works via importing exports, no setting up clients at all)
For my hobbyist project, I'm currently using the terraform provider, but that is third-party. [1]
I'm really torn on this, because on the one hand, Keycloak is undeniably a great tool with a lot of features that make it possible to integrate with almost anything you throw at it, but on the other hand, if you want to set it up in a reproducible, declarative way, you either have to trust a third party to maintain a provider, or the first party that already deprecated stuff way too early once - which is why I'll still use it for personal projects, but can't in good conscience recommend it in a professional capacity.
For my hobbyist project, I'm currently using the terraform provider, but that is third-party. [1]
I'm really torn on this, because on the one hand, Keycloak is undeniably a great tool with a lot of features that make it possible to integrate with almost anything you throw at it, but on the other hand, if you want to set it up in a reproducible, declarative way, you either have to trust a third party to maintain a provider, or the first party that already deprecated stuff way too early once - which is why I'll still use it for personal projects, but can't in good conscience recommend it in a professional capacity.
[1] https://registry.terraform.io/providers/mrparkers/keycloak/l...