Keycloak

Keycloak for use with postgresql

License

License

Categories

Categories

KeY Data Data Formats Formal Verification ORM Keycloak Security
GroupId

GroupId

io.fabric8.platform.apps
ArtifactId

ArtifactId

keycloak
Last Version

Last Version

4.0.204
Release Date

Release Date

Type

Type

jar
Description

Description

Keycloak
Keycloak for use with postgresql
Project Organization

Project Organization

Red Hat

Download keycloak

How to add to project

<!-- https://jarcasting.com/artifacts/io.fabric8.platform.apps/keycloak/ -->
<dependency>
    <groupId>io.fabric8.platform.apps</groupId>
    <artifactId>keycloak</artifactId>
    <version>4.0.204</version>
</dependency>
// https://jarcasting.com/artifacts/io.fabric8.platform.apps/keycloak/
implementation 'io.fabric8.platform.apps:keycloak:4.0.204'
// https://jarcasting.com/artifacts/io.fabric8.platform.apps/keycloak/
implementation ("io.fabric8.platform.apps:keycloak:4.0.204")
'io.fabric8.platform.apps:keycloak:jar:4.0.204'
<dependency org="io.fabric8.platform.apps" name="keycloak" rev="4.0.204">
  <artifact name="keycloak" type="jar" />
</dependency>
@Grapes(
@Grab(group='io.fabric8.platform.apps', module='keycloak', version='4.0.204')
)
libraryDependencies += "io.fabric8.platform.apps" % "keycloak" % "4.0.204"
[io.fabric8.platform.apps/keycloak "4.0.204"]

Dependencies

test (4)

Group / Artifact Type Version
org.jboss.arquillian.junit : arquillian-junit-container jar
io.fabric8 : fabric8-arquillian jar
io.fabric8 : kubernetes-assertions jar
junit : junit jar

Project Modules

There are no modules declared in this project.

Fabric8 Developer Platform

This project generates the distribution of the fabric8 developer platform

fabric8 logo

To install the early access of this on Minishift check out the installation guide

Fabric8 Platform Overview

From version 4.x onwards of the fabric8 platform there are a core set of shared services which are shared by all users then a set of services created for each user/team which we refer to as tenant services.

Shared Services

  • fabric8-ui provides the HTML / CSS / JavaScript from end using Angular and PatternFly to the system
  • keycloak KeyCloak manages SSO
  • fabric8-tenant manages installing and upgrading tenant services as users login etc
  • fabric8-wit Work Item Tracker (database and REST API for spaces, work items etc)
  • forge via the backend and forge addon implements wizards for new projects or import projects etc. Reuses the RHOAR quickstarts and uses the fabric8-jenkinsfiles-library to add pipelines for CI / CD to projects.

when installing on premise we also use these microservices:

  • exposecontroller exposes services as public URLs on kubernetes or openshift clusters via various strategies (Route, Ingress, NodePort, LoadBalancer) depending on the cluster and injects public URLs into ConfigMaps
  • configmapcontroller automates rolling upgrades as ConfigMaps are changed (either by users or via the exposecontroller

Tenant Services

Each user/team can get their own Jenkins, Che and Content Repository.

Our Jenkins image includes the jenkins sync plugin and kubernetes-pipeline-plugin along with the fabric8-pipeline-library

Other components

  • fabric8-platform creates the various distributions (openshift + kubernetes manifests, templates etc)
  • gofabric8 is a go based CLI tool for installing and managing fabric8

Changes in 4.x

Version 4.x of fabric8 differs a little bit from previous 3.x releases as follows:

  • a separation between shared services (like KeyCloak and the console) from tenant services (each tenant (user/team) gets its own jenkins master)
  • SSO is enabled on Kubernetes and OpenShift for using the console, Jenkins and GitHub (with more services coming soon)
  • defaults to using GitHub as the git hosting OOTB; we're hoping to add gogs/gitea/gitlab back soon as soon as the SSO is working
  • integrated issue tracker / kanban board / planning / work item tracking
  • integrated IDE via eclipse Che
  • integrated analytics to help developers get insight into their code and libraries and versions they are using or should consider
  • new improved UI which covers project plannning, creation, analytics, editing/debugging, CI/CD

Github Organisations

There are lots of github repositories which make up the full platform!

To make things easier to navigate we've created a few different organisations to contain the various parts of fabric8:

Detailed List of Projects

The fabric8 developer platform is based on lots of different open source projects. Here's the main repositories:

Maven Tooling

Developer Console

Version 4.x or later

The new shiny Angular console is here fabric8-ui along with a bunch of other NPM modules in the fabric8-ui organisation

The new console works directly with

  • kubernetes/openshift REST API for kubernetes/openshift resources
  • fabric8-wit for spaces and issue tracking
  • forge for new/import project wizards via the backend and forge addon

Version 3.x and earlier

The angular JS 1.x version of the Developer Console is made up of:

CI / CD

DevOps

iPaaS

kubeflix

Tools

  • gofabric8 is a go based CLI tool for installing and managing fabric8

Suppport for non-docker

Some folks have work loads they need to orchestrate on operating systems that don't yet have production quality docker support (e.g. Windows, AIX, Solaris, HPUX).

  • kansible lets you orchestrate operating system processes on Windows or any Unix in the same way as you orchestrate your Docker containers with Kubernetes by using Ansible to provision the software onto hosts and Kubernetes to orchestrate the processes and the containers in a single system

Java Libraries

If you want to write any Java/JVM based tools to interact with Kubernetes we have a number of libraries to help:

Kubernetes

Kubernetes provides the main REST API for working with the Kubernetes Platform. It should provide all you need for writing most services and plugins for Kubernetes.

Testing

### Spring

ActiveMQ

  • mq-client provides the the io.fabric8.mq.core.MQConnectionFactory class which implements the JMS ConnectionFactory to connect to Apache ActiveMQ Artemis using the Kubernetes Service discovery mechanism which requires no user configuration (other than a single environment variable if you wish to switch to a non default service implementation)

Camel

  • camel-amq provides the Camel amq: component which uses the Kubernetes Service discovery mechanism to discover and connect to the ActiveMQ Artemis brokers so that no configuration is required (other than a single environment variable if you wish to switch to a non default service implementation)

  • camel-master provides the Camel master: component which provides a locking mechanism to ensure that only one pod implements a consumer at any time; if that pod dies then another one takes over.

CDI

  • fabric8-cdi provides an easy way to work with Kubernetes services using the CDI Dependency Injection approach
  • fabric8-apt provides an APT code generator to create a JSON Schema file for each environment variable injected by the @ConfigProperty annotation from deltaspike - giving dteails of the name, type, default value and description. This can then be used by the fabric8:json maven goal to list all of the environment variables and their

DevOps

  • fabric8-devops-connector provides a Java library for connecting the various DevOps services like git hosting, chat, issue tracking and jenkins for a project reusing the optional fabric8.yml file

### Git Repos

### Hubot

  • hubot-api provides a Java API for working with the Hubot chat bot for sending notifications to chat services like Lets Chat, IRC, Slack, HipChat and Campfire

### Letschat

### Taiga

  • taiga-api provides a Java API for working with the Taiga issue tracker / kanban / scrum management system

Additional projects

The web console uses many different hawtio 2 modules. In particular the main dependency of is hawtio-kubernetes

Docker images

There are numerous docker images created via separate github repositories such as the following:

Base images

The above-packaged docker images leverage some of these base Docker images:

Java Alpine Linux

Java Centos Linux

JBoss

Jetty

Karaf

Tomcat

s2i

v 4.x pre-release development

Steps to run the in development 4.x fabric8-platform using the latest mnishift please see the new Install Guide

Here's the old way we were installing it via gofabric8:

minishift  start --vm-driver=xhyve --memory=6144 --cpus=4 --disk-size=50g --openshift-version=v3.6.0-alpha.1
minishift openshift config set --patch '{"corsAllowedOrigins": [".*"]}'
oc new-project fabric8
git clone https://github.com/fabric8io/fabric8-platform.git
cd fabric8-platform
mvn clean install -DskipTests=true
gofabric8 deploy --package=packages/fabric8-system/target/classes/META-INF/fabric8/openshift.yml

Pods may be restarted a few times whilst configuration is updated and applied.

Once all pods are seen running with oc get pods

NOTE these next steps will be automated soon

Apply manual step as an admin user:

oc login -u system:admin
cat <<EOF | oc create -f -
kind: OAuthClient
apiVersion: v1
metadata:
  name: fabric8-online-platform
secret: fabric8
redirectURIs:
- "https://$(oc get route keycloak -o jsonpath="{.spec.host}")/auth/realms/fabric8/broker/openshift-v3/endpoint"
grantMethod: prompt
EOF
oc adm policy add-cluster-role-to-user cluster-admin system:serviceaccount:fabric8:init-tenant
oc login -u developer -p developer

Configure Keycloak

We now have GitHub integration which for now requires a manual OAuth setup to obtain a clientid and secret that we will give to keycloak. Follow these steps using the output of:

echo https://$(oc get route keycloak -o jsonpath="{.spec.host}")/auth/realms/fabric8/broker/github/endpoint

as the Authorization callback URL and http://fabric8.io as a sample homepage URL.

https://developer.github.com/apps/building-integrations/setting-up-and-registering-oauth-apps/registering-oauth-apps/

Register OAuth App

open https://$(oc get route keycloak -o jsonpath="{.spec.host}")

Log in with username admin and password admin

Now in Keycloak navigate to the GitHub Identity Provider and edit now you can replace the Client ID and Secret with the values you get from the GitHub setup above.

GitHub provider

io.fabric8.platform.apps

fabric8

open source development platform for kubernetes

Versions

Version
4.0.204
4.0.203
4.0.202
4.0.201
4.0.200
4.0.198
4.0.197
4.0.196
4.0.195
4.0.194
4.0.193
4.0.192
4.0.191
4.0.190
4.0.189
4.0.188
4.0.187
4.0.186
4.0.185
4.0.184
4.0.183
4.0.182
4.0.181
4.0.180
4.0.179
4.0.178
4.0.177
4.0.176
4.0.175
4.0.174
4.0.173
4.0.170
4.0.169
4.0.168
4.0.167
4.0.166
4.0.165
4.0.164
4.0.163
4.0.162
4.0.161
4.0.160
4.0.159
4.0.155
4.0.154
4.0.153
4.0.152
4.0.151
4.0.150
4.0.149
4.0.148
4.0.147
4.0.146
4.0.145
4.0.144
4.0.143
4.0.142
4.0.141
4.0.140
4.0.139
4.0.138
4.0.137
4.0.136
4.0.135
4.0.134
4.0.133
4.0.132
4.0.131
4.0.130
4.0.129
4.0.128
4.0.127
4.0.126
4.0.125
4.0.124
4.0.123
4.0.122
4.0.121
4.0.120
4.0.119
4.0.118
4.0.117
4.0.116
4.0.115
4.0.114
4.0.113
4.0.112
4.0.111
4.0.109
4.0.108
4.0.107
4.0.106
4.0.105
4.0.104
4.0.103
4.0.102
4.0.101
4.0.100
4.0.99
4.0.98
4.0.97
4.0.96
4.0.95
4.0.94
4.0.93
4.0.92
4.0.88
4.0.87
4.0.86
4.0.85
4.0.84
4.0.83
4.0.82
4.0.81
4.0.80
4.0.79
4.0.78
4.0.77
4.0.75
4.0.74
4.0.73
4.0.72
4.0.71
4.0.70
4.0.69
4.0.68
4.0.67
4.0.66
4.0.65
4.0.64
4.0.63
4.0.62
4.0.61
4.0.60
4.0.59
4.0.58
4.0.57
4.0.56
4.0.55
4.0.54
4.0.53
4.0.52
4.0.51
4.0.50
4.0.49
4.0.48
4.0.47
4.0.46
4.0.45
4.0.44
4.0.43
4.0.42
4.0.41
4.0.40
4.0.39
4.0.38
4.0.37
4.0.36
4.0.35
4.0.34
4.0.33
4.0.32
4.0.31
4.0.30
4.0.29
4.0.28
4.0.26
4.0.25
4.0.24
4.0.23
4.0.22
4.0.21
4.0.20
4.0.19
4.0.18
4.0.17
4.0.16
4.0.15
4.0.14
4.0.13
4.0.12
4.0.11
4.0.10
4.0.9
4.0.8
4.0.7
4.0.6
4.0.5
4.0.4
4.0.3
4.0.2
4.0.1