[keycloak-user] Configuring Keycloak in Standalone Clustered Mode

[Rafael Weingärtner]

Hello Keycloak communities,

I am configuring Keycloak for production, and we will need to use it in a
clustered fashion. I have read about the two possible deployment scenarios
“Standalone clustered mode”  and “domain clustered mode”.  It seems that
the “Standalone clustered mode”  is the simpler one. Also, we will be using
Docker to deploy Keycloak. Therefore, we will not have the burden of
managing configuration files manually. The update (configurations and/or
Keycloak versions) should always be a matter of stopping and starting a new
version of the Docker container.

I have one doubt though. It seems pretty magical that to configure Keycloak
in HA mode I only need to use “standalone-ha.xml”. How does the discovery
process of nodes happen? I mean, are the replicates communicating with each
other directly, or is everything via a shared database? Do I need to expose
some specific port from my Keycloaks replicas to the network? Or only the
standard 443/80 is enough?

Thanks in advance for your help ;)

--
Rafael Weingärtner