<div dir="ltr">Hi Marko,<div><br></div><div>thanks for your hints, I went through but still w/o positive result.</div><div>I will write my comments inside your hints.</div><div>I attached 2 files: domain-idbt.xml - with added sections for keycloak</div><div> log.txt - log after start wildfly in command line</div><div><br></div><div>Br,</div><div>Andrej.</div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Nov 3, 2015 at 4:24 PM, Marko Strukelj <span dir="ltr"><<a href="mailto:mstrukel@redhat.com" target="_blank">mstrukel@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr"><div>From your descriptions of the problem it sounds like your server-one which binds to port 8080 doesn't have keycloak-server configured at all - it's using a server group, that uses a different profile than the one you configured.</div></div></blockquote><div> <font color="#ff0000">Our group/server/profile setup looks like:</font></div><div><font color="#ff0000"> </font></div><table border="0" cellpadding="0" cellspacing="0" width="395" style="border-collapse:collapse;width:296pt">
<colgroup><col width="104" style="width:78pt">
<col width="219" style="width:164pt">
<col width="72" style="width:54pt">
</colgroup><tbody><tr height="22" style="height:16.5pt">
<td height="22" class="" width="104" style="height:16.5pt;width:78pt"> <font color="#ff0000">GROUP</font></td>
<td class="" width="219" style="border-left-style:none;width:164pt"><font color="#ff0000">SERVER</font></td>
<td class="" width="72" style="border-left-style:none;width:54pt"><font color="#ff0000">PROFILE</font></td>
</tr>
<tr height="21" style="height:15.75pt">
<td height="21" class="" style="height:15.75pt"><font color="#ff0000"> configuration</font></td>
<td class="" style="border-left-style:none"><font color="#ff0000">configuration-server-demosetup</font></td>
<td class="" style="border-left-style:none"><font color="#ff0000">idbt-ha</font></td>
</tr>
<tr height="21" style="height:15.75pt">
<td height="21" class="" style="height:15.75pt;border-top-style:none"><font color="#ff0000"> authentication</font></td>
<td class="" style="border-top-style:none;border-left-style:none"><font color="#ff0000">authentication-server-demosetup</font></td>
<td class="" style="border-top-style:none;border-left-style:none"><font color="#ff0000">idbt-ha</font></td>
</tr></tbody></table><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr"><div><br></div><div>There are four profiles in the default domain.xml - default, ha, full, and full-ha</div></div></blockquote><div> <font color="#ff0000">In our domain-idbt.xml are only 2 profiles:idbt-ha and idbt-security and I modified inifinispan for idbt-ha (but ha is only in name not used inside configuration)</font> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr"><div><br></div><div>If you want your multiple Keycloak instances to run in high availability mode, using a shared Infinispan cache, and a shared database, then that's the most complex of all configurations - you have to setup a standalone database, use "full-ha" profile to configure the datasource with proper database connection url, and configure the distributed Infinispan cache. Also add <subsystem xmlns="urn:jboss:domain:keycloak-server:1.1"> declaration.</div></div></blockquote><div><br></div><div> <font color="#ff0000"> I created Keycloak_DS, which was before missing.</font></div><div> <font color="#ff0000">I add : extension; inifinispan and subsystem section for Keycloak inside my domain-idbt.xml (I attached finally modified domain-idbt.xml) Pls you can check it inside.</font> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><div dir="ltr"><div> </div>
<div><br></div><div>In server-groups section define a new group or reuse existing one, and set its profile to "full-ha", and use "full-ha-sockets" binding group.</div><div>In host.xml make sure that server definitions have the proper group set.</div><div><br></div><div>Then you also have to copy some configurations.</div><div><br></div><div>Assuming you have two servers defined in host.xml - called server-one, and server-two, create a directory:</div><div><br></div><div>$WILDFLY_HOME/domain/servers/server-one/configuration</div><div><div>$WILDFLY_HOME/domain/servers/server-two/configuration</div></div><div><br></div><div>Then copy the following configurations from standalone/configuration:</div><div><br></div><div><div>cp $WILDFLY_HOME/standalone/configuration/keycloak-server.json $WILDFLY_HOME/domain/servers/server-one/configuration/</div><div>cp -r $WILDFLY_HOME/standalone/configuration/themes $WILDFLY_HOME/domain/servers/server-one/configuration/</div><div>cp -r $WILDFLY_HOME/standalone/configuration/providers $WILDFLY_HOME/domain/servers/server-one/configuration/</div></div><div><br></div><div>cp $WILDFLY_HOME/standalone/configuration/keycloak-server.json $WILDFLY_HOME/domain/servers/server-two/configuration/</div><div><div>cp -r $WILDFLY_HOME/standalone/configuration/themes $WILDFLY_HOME/domain/servers/server-two/configuration/</div></div><div><div>cp -r $WILDFLY_HOME/standalone/configuration/providers $WILDFLY_HOME/domain/servers/server-two/configuration/</div></div></div></blockquote><div><br></div><div> <font color="#ff0000">Done all creation and copying steps.</font></div><div><br></div><div><br></div><div> </div></div><br></div></div>