Keycloak

From /dev/hack
Revision as of 21:36, 16 August 2024 by Zack (talk | contribs) (Created page with "== Overview == [https://idp.devhack.net Keycloak] is an identity provider (IDP) that enables SAML and OpenID Connect (OIDC) authentication to applications within devhack, enabling members to log into various services with one central account. Talk to Zack or Finn for help getting your application talking with Keycloak == Access == * Normal users access at https://idp.devhack.net * Admin portal must be accessed directly from https://idp.devhack.net/admin/master/console/...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Overview

Keycloak is an identity provider (IDP) that enables SAML and OpenID Connect (OIDC) authentication to applications within devhack, enabling members to log into various services with one central account.

Talk to Zack or Finn for help getting your application talking with Keycloak

Access

Deployment

Keycloak and it's postgres database is deployed in a VM and LXC container respectively on the pve-devhack Proxmox host

  • [pve-devhack]
    • devhack-idp01: Primary VM.
      • systemd service keycloak.service
      • docker-compose stack and dockerfile in /opt/keycloak
      • Some configuration is baked directly into the keycloak container, so it is built on every startup, hence the dockerfile
    • idp01-psql01: Postgres database