Keycloak: Difference between revisions

From /dev/hack
Zack (talk | contribs)
Created page with "== Overview == [https://idp.devhack.net Keycloak] is an identity provider (IDP) that enables SAML and OpenID Connect (OIDC) authentication to applications within devhack, enabling members to log into various services with one central account. Talk to Zack or Finn for help getting your application talking with Keycloak == Access == * Normal users access at https://idp.devhack.net * Admin portal must be accessed directly from https://idp.devhack.net/admin/master/console/..."
 
Cameron (talk | contribs)
No edit summary
 
Line 15: Line 15:
*** Some configuration is baked directly into the keycloak container, so it is built on every startup, hence the dockerfile
*** Some configuration is baked directly into the keycloak container, so it is built on every startup, hence the dockerfile
** idp01-psql01: Postgres database
** idp01-psql01: Postgres database
[[Category:Infrastructure]]

Latest revision as of 02:13, 30 August 2024

Overview

Keycloak is an identity provider (IDP) that enables SAML and OpenID Connect (OIDC) authentication to applications within devhack, enabling members to log into various services with one central account.

Talk to Zack or Finn for help getting your application talking with Keycloak

Access

Deployment

Keycloak and it's postgres database is deployed in a VM and LXC container respectively on the pve-devhack Proxmox host

  • [pve-devhack]
    • devhack-idp01: Primary VM.
      • systemd service keycloak.service
      • docker-compose stack and dockerfile in /opt/keycloak
      • Some configuration is baked directly into the keycloak container, so it is built on every startup, hence the dockerfile
    • idp01-psql01: Postgres database