Keycloak for ERSD
Please note this is using jboss/keycloak from Docker hub. Go there for more information if needed.
docker run -p 8080:8080 -e KEYCLOAK_USER=<KC_MASTER_USERNAME> -e KEYCLOAK_PASSWORD=<KC_MASTER_PASS> -e DB_VENDOR=mysql -e DB_ADDR=<DB_ADDR> -e DB_USER=<DB_USER> -e DB_PASSWORD=<DB_PASS> -t jboss/keycloak
Run the configure script provided in this repository. Please note it can be run from anywhere. It does not need to be run from within the Keycloak container.
# Run a Docker image that houses the configure script
docker run -it registry.ruvos.com/ersd/ersd-keycloak
# Or clone and execute
git clone [email protected]:ersd/ersd-keycloak.git
./ersd-keycloak/configure
Either way, provide configure
with keycloak credentials and the desired setup options, and it should perform the following:
- Authenticates against the keycloak service located at the base URL you provide
- Creates a realm of your choosing, which defaults to
ersd
- Creates the
admin
realm role on the newly created realm - Creates a client of your choosing, which defaults to
ersd-app
- Fetches the authentication certificate for the newly created realm and writes it to standard out
All of these are requirements of the ERSD Node application and should be reflected in the configuration there as well.