Hi all.
I am try configure ssl with nginx in public network (port:8443) and
keycloak 2.3.0.Final in private network (port: 8080).
1. The next is ssl configuration for nginx:
upstream keycloak {
server localhost:8080;
}
server {
listen 8443;
server_name localhost;
ssl on;
ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;
ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ALL:!ADH!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
location / {
proxy_http_version 1.1;
proxy_set_header Connection "";
proxy_set_header Host $host:$server_port;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_pass
http://keycloak;
}
}
2. I am deploy the keycloak in domain mode and set the next configuration:
<server name="default-server">
<http-listener name="default"
socket-binding="http"
redirect-socket="https" proxy-address-forwarding="true"/>
<host name="default-host"
alias="localhost">
<location name="/"
handler="welcome-content"/>
<filter-ref name="server-header"/>
<filter-ref name="x-powered-by-header"/>
</host>
</server>
But I get the next error in browser:
Blocked loading mixed active content “
http://172.16.0.186:8443/auth/resources/2.3.0.final/admin/keycloak/lib/pa...
”
and others several resources loaded by keycloak.
Thanks for you help.