Setup Keycloak as an Identity Provider & OpenID Connect Token Issuer

Рет қаралды 89,276

Күн бұрын

In our ongoing quest to OpenID Connect / Oauth2 based Authentication for Kubernetes Clusters, we have reached a point where we need a third-party Identity Provider and Token Issuer. Keycloak is just that. Learn how to spin it up with Docker, learn what OAuth2 Clients are and how to configure Keycloak to be used with Kubernetes.
Link to the github repository mentioned in the video: github.com/etiennedi/keycloak...

Пікірлер: 16

@vbossbla532 6 жыл бұрын

You do not understand how grateful I am for this video. Thank you

@felixschneider608 4 жыл бұрын

Thank you for this! Cant wait to see how to link Keycloak to Minikube in your next video.

@mksybr 2 жыл бұрын

As a solo dev learning keycloak, this is a very helpful video. Thanks!

@jamallmahmoudi9481 Жыл бұрын

cool&perfect Thanks a lot 🙏🙏🙏

@onesockblackbird5433 5 жыл бұрын

Great tutorial! thank you for this. I do have one question. Why not put the keycloak on the same kubernetes cluster, but with a different ingress/namespace?

@diazgbs 3 жыл бұрын

Hey thanks for the video. I did something similar, self singed my own CA and then created a key pair certificates for ssl signed by my CA key. Everithing works well. nginx proxies all the https traffic properly and I was able to create realms, add users trough nginx port 443, but when an user for example: the admin user from master realm goes to the account management he can't update the his password using the account managment, even I can't change the email, name or last name preferences, it throws a message that says "Something went wrong" keycloak logs does not show anything. Nginx logs shows 200 request but 403 response only. My local machine has my signed CA configured properly since Google chrome shows the ssl in green. I setup all this using docker-compose. Do you have any idea why is this happening?

@utpmahesh444 6 жыл бұрын

Are you an elien or something that have super super teaching skills to the point. ??? :D :D :D Thank you so much for list of videos

@etiennedilocker9729 6 жыл бұрын

I kinda like the idea of an alien coming coming to earth with the purpose to teach DevOps skills. I might have to disappoint you, though. As far as I'm aware I was born on earth. I'm glad you like my teaching skills. In my day-to-day job I'm working as software engineering consultant, so while I do build a lot of software, teaching skills is also a big part of it. The reason for starting this channel was both really two things: First I realized I'm learning so much stuff myself and thought I wanna "write down" all of those learnings somehow. Second I was realized I'm teaching quite some skills to a small audience every day and thought I might give it a shot to reach a bigger audience.

@kubucation 6 жыл бұрын

oops, replied from the wrong account there ;)

@ssooyyeerr Жыл бұрын

Nice video! What iterm2 or ohmyzsh or tmux plugins do you use for such terminal view?

@amruthabhat7167 4 жыл бұрын

Can this be implemented in Managed Clusters as well?

@ranjitjadhav3551 4 жыл бұрын

For me https urls are getiing block by keycloak..Is there any setting which i have to do in keycloak

@elenaperez6327 3 жыл бұрын

Thanks for the video. I am trying to set up keycloak with saml but the redirect is not working and I receive this error: 405 Not Allowed nginx/1.19.2 Do you know why I get this error and if you can point me in the right direction of what I need to change? Maybe I have configured keycloak incorrecly so my metadata is wrong? Any help would greatly be appreciated 😀

@papeacendiaye4900 2 жыл бұрын

Nice tutorial so if you want to authenticate Moodle app with keycloak how to do it????

@hussainco1850 4 жыл бұрын

How do I turn Keycloak old version 4.1.0 into 'Standalone server distribution'? My stackoverflow question link: stackoverflow.com/questions/60801013/how-do-i-turn-keycloak-old-version-4-1-0-into-standalone-server-distribution Could you help me?