[keycloak-user] Running Keycloak behind Apache Reverse Proxy

Nalyvayko, Peter pnalyvayko at agi.com
Thu Feb 21 16:13:33 EST 2019 

Here is a link to a more recent docs:

https://www.keycloak.org/docs/latest/server_installation/index.html#_setting-up-a-load-balancer-or-proxy
________________________________________
From: Nalyvayko, Peter
Sent: Thursday, February 21, 2019 4:11 PM
To: Vikram; keycloak-user at lists.jboss.org
Subject: RE: [keycloak-user] Running Keycloak behind Apache Reverse Proxy

Vikram,


>> https://www.keycloak.org/docs/latest/server_admin/#apache-certificate-lookup-provider

The instructions above only apply if you are trying to set up mutual SSL.

Take a look at https://www.keycloak.org/docs/1.9/server_installation_guide/topics/clustering/load-balancer.html how to set up keycloak behind load balancer, there are a few changes to the keycloak configuration you'll need to make

Hope this helps
Regards
--Peter

________________________________________
From: keycloak-user-bounces at lists.jboss.org [keycloak-user-bounces at lists.jboss.org] on behalf of Vikram [vikram.eswar at fleetroute.com]
Sent: Thursday, February 21, 2019 11:40 AM
To: keycloak-user at lists.jboss.org
Subject: [keycloak-user] Running Keycloak behind Apache Reverse Proxy

Hi all,

OS: Ubuntu 18.04

I am running an https secured apache server as a reverse proxy. Lets say
at https://example.com

Now, I have a keycloak server running on the same machine, lets say at
http://localhost:1234 (note: HTTP)

I have set it up such that https://example.com/keycloak points to
http://localhost:1234

Now, I have a javascript application which is trying to authenticate
with Keycloak using a javascript adapter. In the keycloak.json
configuration file, I have the url set up as :

url : 'https://example.com/keycloak/auth|'|

This does not work. In order to access keycloak for authentication from
the outside world, I need this to connect.

Anything on this ?

I have already looked at this link :

https://www.keycloak.org/docs/latest/server_admin/#apache-certificate-lookup-provider


I have tried setting the certificate lookup but I am not sure if I am
doing it right. I set it within the virtualhost block in the
default-ssl.conf file through RequestHeader.

Regards,

Vikram


||

_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user

More information about the keycloak-user mailing list