User Tools
сервис_keycloak
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
сервис_keycloak [2025/08/18 09:01] val [docker-compose] |
сервис_keycloak [2025/08/23 12:20] (current) val [REST API] |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== Сервис Keycloak ====== | ====== Сервис Keycloak ====== | ||
| + | * [[Практические примеры Keycloak]] | ||
| ===== Установка и запуск ===== | ===== Установка и запуск ===== | ||
| Line 55: | Line 56: | ||
| keycloak: | keycloak: | ||
| image: quay.io/keycloak/keycloak:22.0.5 | image: quay.io/keycloak/keycloak:22.0.5 | ||
| + | # image: quay.io/keycloak/keycloak:26.1.3 | ||
| container_name: keycloak | container_name: keycloak | ||
| restart: always | restart: always | ||
| Line 70: | Line 72: | ||
| - KEYCLOAK_ADMIN=admin | - KEYCLOAK_ADMIN=admin | ||
| - KEYCLOAK_ADMIN_PASSWORD=strongpassword | - KEYCLOAK_ADMIN_PASSWORD=strongpassword | ||
| + | # - KC_BOOTSTRAP_ADMIN_USERNAME=admin | ||
| + | # - KC_BOOTSTRAP_ADMIN_PASSWORD=strongpassword | ||
| - KC_HTTPS_CERTIFICATE_FILE=/wild.crt | - KC_HTTPS_CERTIFICATE_FILE=/wild.crt | ||
| - KC_HTTPS_CERTIFICATE_KEY_FILE=/wild.key | - KC_HTTPS_CERTIFICATE_KEY_FILE=/wild.key | ||
| + | # - KC_PROXY_HEADERS=xforwarded | ||
| # - KC_DB=postgres | # - KC_DB=postgres | ||
| # - KC_DB_URL=jdbc:postgresql://postgres:5432/keycloak | # - KC_DB_URL=jdbc:postgresql://postgres:5432/keycloak | ||
| Line 376: | Line 381: | ||
| <code> | <code> | ||
| - | # cat keycloak.sh | + | $ cat keycloak.sh |
| </code><code> | </code><code> | ||
| KEYCLOAK_URL=https://kc.corp.un | KEYCLOAK_URL=https://kc.corp.un | ||
| Line 399: | Line 404: | ||
| # -H "Authorization: Bearer ${ACCESS_TOKEN}" | jq | # -H "Authorization: Bearer ${ACCESS_TOKEN}" | jq | ||
| #curl -SskX GET "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/${USER_ID}" \ | #curl -SskX GET "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/${USER_ID}" \ | ||
| - | #curl -SskX GET "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/?q=username:admin" \ | + | #curl -SskX GET "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/?q=username:user1" \ |
| #curl -SskX POST "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/" \ | #curl -SskX POST "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/" \ | ||
| # -H "Content-Type: application/json" \ | # -H "Content-Type: application/json" \ | ||
| # -H "Authorization: Bearer ${ACCESS_TOKEN}" \ | # -H "Authorization: Bearer ${ACCESS_TOKEN}" \ | ||
| - | # --data-binary "@user1.json" | ||
| # -d '{"username": "user1"}' | # -d '{"username": "user1"}' | ||
| + | # --data-binary "@user1.json" | ||
| #curl -SskX PUT "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/${USER_ID}" \ | #curl -SskX PUT "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/${USER_ID}" \ | ||
| Line 418: | Line 423: | ||
| # -d '{ "type": "password", "temporary": false, "value": "kcpassword1" }' | # -d '{ "type": "password", "temporary": false, "value": "kcpassword1" }' | ||
| - | #curl -SskX DELETE "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/${UPD_USER_ID}" \ | + | #curl -SskX DELETE "${KEYCLOAK_URL}/admin/realms/${KEYCLOAK_REALM}/users/${USER_ID}" \ |
| # -H "Authorization: Bearer ${ACCESS_TOKEN}" | # -H "Authorization: Bearer ${ACCESS_TOKEN}" | ||
| </code><code> | </code><code> | ||
| - | # cat user1.json | + | $ cat user1.json |
| </code><code> | </code><code> | ||
| { | { | ||
сервис_keycloak.1755496900.txt.gz · Last modified: 2025/08/18 09:01 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
