[keycloak-dev] Keycloak server config
Stian Thorgersen
stian at redhat.com
Wed Apr 2 08:58:22 EDT 2014
----- Original Message -----
> From: "Bill Burke" <bburke at redhat.com>
> To: keycloak-dev at lists.jboss.org
> Sent: Wednesday, 2 April, 2014 1:52:23 PM
> Subject: Re: [keycloak-dev] Keycloak server config
>
>
>
> On 4/2/2014 6:33 AM, Stian Thorgersen wrote:
> > We're starting to get quite a lot of things that can be configured globally
> > for a Keycloak server, with more coming soon. This includes:
> >
> > * Model DB
> > * Audit DB
> > * LDAP servers (currently per-realm, but it would be better to create
> > global config that can be selected in realm)
>
> Why do you think an LDAP server would be a global item?
This approach lets you configure LDAP servers globally. Then refer to them in the realm config. Basic idea is that you pull the environment specific stuff (i.e. ldap server hostname) out into a global config.
You may for example have two KC servers with the same config, but they are deployed at different data-centres so hostname of ldap server could be different. Also let's you switch between dev, test and production environments while still keeping realm config the same.
>
> > * SMTP servers (currently per-realm, but it would be better to create
> > global config that can be selected in realm)
>
> Not sure I agree with this either. While the SMTP server IP address may
> be the same the username, password, and "From" may be different per realm.
Same as above, you use this to configure the SMTP server. In the realm you then select which SMTP server you want, then specify username/password and from on a realm level.
>
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
More information about the keycloak-dev
mailing list