Re: [keycloak-user] Keycloak with apache in front

Thursday, 31 May 2018

This apache2 vhost.conf (under debian 8) works for us:

...
 <VirtualHost *:443>
                 ServerAdmin webmaster(a)company.com
                 ServerName keycloak.company.com
                 DocumentRoot /var/www/html

     RewriteEngine On
     RewriteCond %{REQUEST_URI} ^/$
     RewriteRule ^/.*$ https://id.company.com/auth/realms/domain/account

     ProxyPreserveHost       On
     ProxyVia                Off
     ProxyRequests           Off
     ProxyPass               /       "http://localhost:8080/"
     ProxyPassReverse        /       "http://localhost:8080/"

     RequestHeader set X-Forwarded-Proto "https"
     RequestHeader set X-Forwarded-Port "443"

 <Proxy *>
     Order deny,allow
     Allow from all
 </Proxy>

                 # Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
                 # error, crit, alert, emerg.
                 # It is also possible to configure the loglevel for particular
                 # modules, e.g.
                 LogLevel debug ssl:warn

                 ErrorLog ${APACHE_LOG_DIR}/keycloak-error.log
                 CustomLog ${APACHE_LOG_DIR}/keycloak-access.log combined

                 #   SSL Engine Switch:
                 #   Enable/Disable SSL for this virtual host.
                 SSLEngine on
                 SSLCertificateFile      /etc/ssl/apache2/cert.pem
                 SSLCertificateKeyFile /etc/ssl/apache2/cert.key
                 SSLCertificateChainFile /etc/ssl/apache2/fullchain.pem

 </VirtualHost> 
Perhaps it will help you.

MJ

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

Re: [keycloak-user] Keycloak with apache in front