Keycloak: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Datenbank konfigurieren in
Signux (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „[https://kaeruct.github.io/posts/how-to-use-lets-encrypt-certificates-with-keycloak.html How to use Let's Encrypt certificates with Keycloak]“) |
Signux (Diskussion | Beiträge) Keine Bearbeitungszusammenfassung |
||
| (12 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
| Zeile 1: | Zeile 1: | ||
[https://www.keycloak.org/getting-started/getting-started-zip keycloak get started...] | |||
====== mariadb Datenbank einrichten ====== | |||
<pre> | |||
mysql -u root -p | |||
CREATE DATABASE keycloak; | |||
GRANT ALL ON keycloak.* TO 'keycloak'@'localhost' IDENTIFIED BY 'strongpassword'; | |||
FLUSH PRIVILEGES; | |||
EXIT; | |||
</pre> | |||
====== [https://www.keycloak.org/downloads downloaden] von keycloak ====== | |||
<pre> | |||
wget https://github.com/keycloak/keycloak/releases/download/22.0.5/keycloak-22.0.5.tar.gz | |||
tar xfz keycloak-22.0.5.tar.gz | |||
cd keycloak-22.0.5 | |||
</pre> | |||
====== Datenbank konfigurieren in <code>conf/keycloak.conf</code> ====== | |||
<pre> | |||
db=mariadb | |||
db-username=keycloak | |||
db-password=strongpassword | |||
db-url=jdbc:mariadb://localhost:3306/keycloak | |||
hostname=keycloak.example.org | |||
</pre> | |||
====== Letsencrypt zertifikate konfigurieren ====== | |||
<pre> | |||
https-certificate-file=/etc/letsencrypt/live/<domain>/cert.pem | |||
https-certificate-key-file=/etc/letsencrypt/live/<domain>/privkey.pem | |||
</pre> | |||
====== Ports konfigurieren ====== | |||
<pre> | |||
http-port=8080 | |||
https-port=8443 | |||
</pre> | |||
====== Http verbindungen deaktivieren ====== | |||
<pre> | |||
http-enabled=false | |||
</pre> | |||
====== (optional) haproxy anpassen und proxy konfigurieren ====== | |||
<pre> | |||
proxy=passthrough | |||
</pre> | |||
====== Im Dev-Modus starten um Admin account anlegen zu können ====== | |||
<pre> | |||
bin/kc.sh start-dev | |||
</pre> | |||
====== Im Production modus starten ====== | |||
<pre> | |||
bin/kc.sh build | |||
bin/kc.sh start | |||
</pre> | |||
[https://kaeruct.github.io/posts/how-to-use-lets-encrypt-certificates-with-keycloak.html How to use Let's Encrypt certificates with Keycloak] | [https://kaeruct.github.io/posts/how-to-use-lets-encrypt-certificates-with-keycloak.html How to use Let's Encrypt certificates with Keycloak] | ||
Aktuelle Version vom 27. Oktober 2023, 19:42 Uhr
mariadb Datenbank einrichten
mysql -u root -p CREATE DATABASE keycloak; GRANT ALL ON keycloak.* TO 'keycloak'@'localhost' IDENTIFIED BY 'strongpassword'; FLUSH PRIVILEGES; EXIT;
downloaden von keycloak
wget https://github.com/keycloak/keycloak/releases/download/22.0.5/keycloak-22.0.5.tar.gz tar xfz keycloak-22.0.5.tar.gz cd keycloak-22.0.5
Datenbank konfigurieren in conf/keycloak.conf
db=mariadb db-username=keycloak db-password=strongpassword db-url=jdbc:mariadb://localhost:3306/keycloak hostname=keycloak.example.org
Letsencrypt zertifikate konfigurieren
https-certificate-file=/etc/letsencrypt/live/<domain>/cert.pem https-certificate-key-file=/etc/letsencrypt/live/<domain>/privkey.pem
Ports konfigurieren
http-port=8080 https-port=8443
Http verbindungen deaktivieren
http-enabled=false
(optional) haproxy anpassen und proxy konfigurieren
proxy=passthrough
Im Dev-Modus starten um Admin account anlegen zu können
bin/kc.sh start-dev
Im Production modus starten
bin/kc.sh build bin/kc.sh start