Skip to content

Files

keycloak

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
Sep 2, 2024
Nov 11, 2024
Oct 27, 2024
Nov 11, 2024
Sep 2, 2024
Nov 11, 2024
Sep 2, 2024
Nov 11, 2024
Nov 11, 2024
Sep 2, 2024
Sep 2, 2024
Nov 11, 2024

Docker-compose example:

docker-compose -f keycloak/docker-compose.yaml up

Keycloak: http://localhost:8181/auth/ (keep_kc:keep_kc)

Keep login page: http://localhost:3000/

For Azure:

Instructions:

  1. https://rahulroyz.medium.com/using-keycloak-as-idp-for-azure-ad-sso-authentication-role-authorization-0b309c15eadc
  2. https://rahulroyz.medium.com/using-keycloak-as-idp-for-azure-ad-role-authorization-part-2-map-ad-groups-to-keycloak-roles-9850d4acd536

Set email, first name & last name for keep_admin user: http://localhost:8181/auth/admin/master/console/#/keep/users Also please assign admin role for keep_admin.

Development

docker run --name phasetwo_test --rm -p 8181:8080 \
    -e KEYCLOAK_ADMIN=admin -e KEYCLOAK_ADMIN_PASSWORD=admin \
    quay.io/phasetwo/phasetwo-keycloak:latest \
    start-dev
http://localhost:8181/realms/keep/portal/
http://localhost:8181/realms/keep/portal/
https://euc1.auth.ac/auth/realms/keep/portal

delete realm to refresh

  1. delete the realm from the UI
  2. restart

how to use phasetwo plugins

what to read:

  1. main repo - https://github.com/p2-inc/keycloak-orgs
  2. SSO wizzards -

New Tutorial

Keycloak configuration

  1. Change admin theme so that "Org" will show

  2. Create organization

  3. Add all members to organization TODO: how to do it automatically?

  4. For iframe -

    1. http://localhost:8181/auth/admin/master/console/#/keep/realm-settings/security-defenses
    2. frame-src 'self' http://localhost:3000; frame-ancestors 'self' http://localhost:3000; object-src 'none';

LDAP

  1. openldap container - the ldap server
  2. ldap-ui - ui for the ldap
  3. load ldap.ldif

http://localhost:8181/auth/admin/master/console/#/keep

Sign in page

1. build: pnpm build:jar

How to compile the javascript

cd javascript_providers jar cvf keep-abac-policy.jar -C keep-abac-policy .