[keycloak-user] Upgrading cross-datacenter replication installation with independent domain controller

Wed Nov 6 07:18:36 EST 2019

Hello,

I have the following installation and have doubts about the right 
procedure to upgrade it:

- Two datacenters
- Keycloak 4.8.3
- A domain clustered installation with one cluster per datacenter
- Cross-datacenter replication using infinispan server 9.3.6.
- A single independent domain controller for both datacenters (the domain 
controller has no servers)
- A backup for the domain controller in the other datacenter (also with no 
servers)

The domain controller:
Installed in $KEYCLOAK_HOME/domain-controller
Domain configuration in configuration/domain.xml
Host configuration in configuration/host-master.xml

The domain controller backup:
Installed in $KEYCLOAK_HOME/domain-controller
Domain configuration replicated with the --backup option
Host configuration in configuration/host-slave.xml

Each server in each cluster:
Installed in $KEYCLOAK_HOME/domain
Domain configuration replicated with the --cached-dc option
Host configuration in configuration/host-slave.xml

The infinispan server installation is totally equivalent, with its own 
domain controller.

I've been taking a look to the migrate-domain-clustered.cli and several 
doubts arise:
- Should I apply this script only to the domain controller as domain 
configuration will be distributed to the other host controllers? Or 
accions are also needed for each slave instance? (Perhaps the script can 
perform changes to the host-slave.xml files?)
- The script seems to assume the installation is located at 
$KEYCLOAK_HOME/domain. What is the right way to change it to 
$KEYCLOAK_HOME/domain-controller?
- The script seems to assume that the host configuration is in the 
host.xml file. What is the right way to change it to host-master.xml?
- The script needs the location of the file keycloak-server.json, but my 
installation has no such file. Is this file something present in older 
versions only? Can I ignore it?

Thank you very much in advance,

Juan
------------------------------------------------------------------------------------------------------------------------------------
Este mensaje va dirigido únicamente a la(s) persona(s) y/o entidad(es) arriba relacionada(s).
Puede contener información confidencial o legalmente protegida. Si no es usted el destinatario
señalado, le rogamos borre del sistema inmediatamente el mensaje y sus copias. Asimismo le
informamos que cualquier copia, divulgación, distribución o uso de los contenidos está prohibida.
---------------
This message is addressed only to the person (people) and / or entities listed above. It may contain confidential or legally protected information. If you are not the recipient indicated, please delete the message and its copies immediately from the system. We also inform that any copy, disclosure, distribution or use of the contents is forbidden
---------------------------------------------------------------------------------------------------------------
Viewnext, S.A. Domicilio Social: Avda. de Burgos 8-A 28036 de Madrid. 
telf: 913834060, Fax: 913834090. Reg. M. Madrid: Tomo 3238, Libro:0, Folio: 78, Seccion: 8ª, Hoja M-55112, N.I.F.: A-80157746