User Tools
сервис_keycloak
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
сервис_keycloak [2025/10/07 12:27] val [Kubernetes] |
сервис_keycloak [2025/12/01 14:02] (current) val [Проверка] |
||
|---|---|---|---|
| Line 119: | Line 119: | ||
| <code> | <code> | ||
| ~/$ helm repo add bitnami https://charts.bitnami.com/bitnami; helm search repo bitnami/keycloak --versions; helm repo remove bitnami | ~/$ helm repo add bitnami https://charts.bitnami.com/bitnami; helm search repo bitnami/keycloak --versions; helm repo remove bitnami | ||
| + | ...403 Forbidden | ||
| ~/$ KC_HC_VER=17.3.6 | ~/$ KC_HC_VER=17.3.6 | ||
| Line 253: | Line 254: | ||
| Client ID: any-client | Client ID: any-client | ||
| Valid redirect URIs: * | Valid redirect URIs: * | ||
| + | | ||
| + | может понадобиться включить | ||
| + | Direct access grants | ||
| </code> | </code> | ||
| Line 273: | Line 277: | ||
| </code> | </code> | ||
| - | * [[https://jwt.io/|JWT.IO allows you to decode, verify and generate JWT]] | + | * [[https://jwt.io/|JWT.IO allows you to decode, verify and generate JWT]] |
| + | |||
| + | === Проверка подписи JWT === | ||
| + | |||
| + | * https://keycloak.corp13.un/realms/corp13/protocol/openid-connect/certs | ||
| + | |||
| + | <code> | ||
| + | -----BEGIN CERTIFICATE----- | ||
| + | ... | ||
| + | -----END CERTIFICATE----- | ||
| + | </code> | ||
| === Apache CGI приложение === | === Apache CGI приложение === | ||
| Line 329: | Line 343: | ||
| username -> | username -> | ||
| LDAP Attribute: sAMAccountName | LDAP Attribute: sAMAccountName | ||
| + | </code> | ||
| + | |||
| + | === FreeIPA === | ||
| + | <code> | ||
| + | Vendor: Other | ||
| + | |||
| + | Connection URL: ldap://server.corpX.un | ||
| + | |||
| + | Bind type: none | ||
| + | или, для выгрузки email | ||
| + | Bind type: simple | ||
| + | Bind DN: uid=admin,cn=users,cn=accounts,dc=corp13,dc=un | ||
| + | |||
| + | Edit mode: READ_ONLY | ||
| + | |||
| + | Users DN: cn=users,cn=compat,dc=corpX,dc=un | ||
| + | Users DN: cn=users,cn=accounts,dc=corpX,dc=un | ||
| + | ... | ||
| + | Username LDAP attribute: uid | ||
| + | ... | ||
| + | RDN LDAP attribute: uid | ||
| + | ... | ||
| + | UUID LDAP attribute: ipaAnchorUUID | ||
| + | UUID LDAP attribute: uid | ||
| </code> | </code> | ||
сервис_keycloak.1759829259.txt.gz · Last modified: 2025/10/07 12:27 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
