You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Nicolas Massé
ae524d8850
|
1 month ago | |
|---|---|---|
| .. | ||
| config | 1 month ago | |
| other | 1 month ago | |
| Makefile | 1 month ago | |
| README.md | 1 month ago | |
| keycloak-build.timer | 1 month ago | |
| keycloak.build | 1 month ago | |
| keycloak.container | 1 month ago | |
| keycloak.target | 1 month ago | |
| overlay.bu | 1 month ago | |
README.md
Podman Quadlet: Keycloak
Overview
Keycloak is an open source identity and access management server started as a Podman Quadlet. It provides single sign-on (SSO), identity brokering, and user federation capabilities.
This cookbook:
- Builds a custom Keycloak container image locally for optimized startup.
- Runs Keycloak with PostgreSQL as the database backend (requires the
postgresqlcookbook). - Includes a timer to periodically rebuild the container image.
- Includes health checks to monitor the service status.
Prerequisites
- The
postgresqlcookbook must be installed and running. - Configuration file
/etc/quadlets/keycloak/config.envmust exist.
Usage
In a separate terminal, follow the logs.
sudo make tail-logs
Install the Podman Quadlets and start Keycloak.
sudo make clean install
You should see the keycloak-build.service building the optimized Keycloak container image. Then, the keycloak.service should start up after waiting for PostgreSQL to be available.
Verify Keycloak is running:
curl -sSf http://127.0.0.1:8080/health
Restart the keycloak.target unit.
sudo systemctl restart keycloak.target
Finally, remove the quadlets, their configuration and their data.
sudo make uninstall clean
Integration tests
sudo make test