Keycloak

From /dev/hack

Overview

Keycloak is an identity provider (IDP) that enables SAML and OpenID Connect (OIDC) authentication to applications within devhack, enabling members to log into various services with one central account.

Talk to Zack or Finn for help getting your application talking with Keycloak

Access

Deployment

Keycloak and it's postgres database is deployed in a VM and LXC container respectively on the pve-devhack Proxmox host

  • [pve-devhack]
    • devhack-idp01: Primary VM.
      • systemd service keycloak.service
      • docker-compose stack and dockerfile in /opt/keycloak
      • Some configuration is baked directly into the keycloak container, so it is built on every startup, hence the dockerfile
    • idp01-psql01: Postgres database