Upgrade to 1.9.5.  A lot of changes have happened since 1.5....A lot...We don't support community versions that old.  Commercial support will be based off of 1.9.x branch.


On 5/27/16 2:50 PM, Moon S.Yim wrote:
Hello keycloak users,
Not sure this is a correct way to ask question in User Forum.

We're using keyclock 1.5 for production as single node, it works well.
We're trying to make HA clustering with 2 nodes, but doesn't work.
just following  keycloak user guide (http://keycloak.github.io/docs/userguide/keycloak-server/pdf/keycloak-reference-guide-en-US.pdf) Chapter 29. Clustering.
how to start is
/opt/keycloak-1.5.0.Final/keycloak/bin/standalone.sh  --server-config=standalone-keycloak-ha.xml -Djboss.bind.address=`hostname -i` & 
or
/opt/keycloak-1.5.0.Final/keycloak/bin/standalone.sh  --server-config=standalone-keycloak-ha.xml -Djboss.bind.address=`hostname -i` -bpublic=`hostname -i` -bprivate=`hostname -i` &

standalone-keycloak-ha.xml  or  standalone-ha.xml, the same results.

keyclock process is up and running on 2 nodes, but no log for clustering when it starts up.
and Admin console login is failed.

18:02:59,625 WARN  [org.keycloak.events] (default task-21) type=CODE_TO_TOKEN_ERROR, realmId=master, clientId=security-admin-console, userId=null, ipAddress=10.x.x.113, error=invalid_code, code_id=c4f010be-9747-4b8a-a7be-e44f9bc1e3bf, client_auth_method=client-secret
18:03:51,482 WARN  [org.keycloak.events] (default task-6) type=LOGIN_ERROR, realmId=master, clientId=null, userId=null, ipAddress=10.x.x.113, error=invalid_code

my questions for HA clustering  is
1) how 2 nodes recognize each other? there is no configuration for that except sessions  cache of infinispan/Keycloak container
2) any good example of standalone-keycloak-ha.xml for 2 nodes clustering.


Thanks
Best Regards, MoonY
  



_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user