Skip to content

Commit

Permalink
address review
Browse files Browse the repository at this point in the history
  • Loading branch information
amrita-shrestha committed May 31, 2024
1 parent cad9353 commit fd19b2b
Show file tree
Hide file tree
Showing 2 changed files with 26 additions and 24 deletions.
29 changes: 15 additions & 14 deletions src/assets/Keycloak/Keycloak.md
Original file line number Diff line number Diff line change
Expand Up @@ -3,8 +3,8 @@ title: Introduction to Keycloak
authorName: Amrita Shrestha
authorAvatar: https://avatars.githubusercontent.com/u/54478846?s=100&v=4
authorLink: https://github.com/amrita-shrestha
createdAt: May 14, 2024
tags: Keycloak, Identity Access Management
createdAt: May 31, 2024
tags: Keycloak, IAM
banner: https://blog.jankaritech.com/src/assets/Keycloak/images/Keycloak/Keycloak.png
---

Expand Down Expand Up @@ -39,18 +39,10 @@ without the need for additional coding.
6. Social Login:
Keycloak has built-in support to login via Google, GitHub, and Facebook, which helps us to use social identity providers.

## Keycloak Drawbacks
Despite its extensive features, Keycloak does have certain limitations. One of these is the need for a more varied implementation approach.
Additionally, the following are some of the drawbacks associated with Keycloak:
1. Complex Server Deployment:
The manual process involved in deploying Keycloak on a server can be complicated, potentially affecting overall productivity.

2. Lack of Comprehensive Support Documentation:
Despite its robust functionalities, Keycloak could benefit from more efficient and extensive support documentation. This would make it easier for users to find suitable solutions to their problems.

## Keycloak Installation
### By Docker
Make sure [Docker Engine](https://docs.docker.com/engine/install/) and [Docker Compose](https://docs.docker.com/compose/install/) has been installed in your system.
Two different way are available to install Keycloak using docker as mentioned below.

1. Keycloak using docker image
Run the following docker command to serve the Keycloak image. Keycloak will be available on `http://localhost:8080.
Expand Down Expand Up @@ -94,8 +86,8 @@ Save the above code in `compose.yaml` file and run `docker compose up` in a term
Docker compose serves Keycloak on `http://localhost:8001`.
### By distribution file
There is another way to set up Keycloak using the keycloak distribution file.
### By Distribution File
There is another way to set up Keycloak using the Keycloak distribution file.
1. Download the Keycloak distribution
```
export KC_VERSION=24.0.4
Expand All @@ -121,7 +113,7 @@ There is another way to set up Keycloak using the keycloak distribution file.
```
KEYCLOAK_ADMIN=admin KEYCLOAK_ADMIN_PASSWORD=admin ./bin/kc.sh start-dev
```
> Note: if port 8080 is already used then you can map the Keycloak port using the Keycloak environment variable 'KC_HTTP_PORT=8001'
> Note: if port 8080 is already used, then you can map the Keycloak port using the Keycloak environment variable 'KC_HTTP_PORT=8001'
6. When we start again, it is not necessary to set these variables again. You can start the server with:
```
Expand All @@ -138,6 +130,15 @@ Keycloak serves on `http://localhost:<port>`.
3. Keycloak provides a web-based GUI which makes any configurations changes easy.
4. Keycloak has huge [community support](https://www.keycloak.org/community).

## Keycloak Drawbacks
Despite its extensive features, Keycloak does have certain limitations. One of these is the need for a more varied implementation approach.
Additionally, the following are some of the drawbacks associated with Keycloak:
1. Complex Server Deployment:
The manual process involved in deploying Keycloak on a server can be complicated, potentially affecting overall productivity.

2. Lack of Comprehensive Support Documentation:
Despite its robust functionalities, Keycloak could benefit from more efficient and extensive support documentation. This would make it easier for users to find suitable solutions to their problems.

## When It May Not Be the Best Choice?
1. Enterprises seeking robust guarantees or support may find Keycloak lacking in this regard. As an open-source project, there are no assurances provided by its producer regarding its functionality or roadmap.
Support is community-driven, typically through platforms like Stack Overflow, with no guaranteed response times.
Expand Down
21 changes: 11 additions & 10 deletions src/assets/Keycloak/oCIS-with-Keycloak.md
Original file line number Diff line number Diff line change
@@ -1,20 +1,21 @@
---
title: Case Study About Integrating oCIS With Keycloak
title: Integrating oCIS With Keycloak
authorName: Amrita Shrestha
authorAvatar: https://avatars.githubusercontent.com/u/54478846?s=100&v=4
authorLink: https://github.com/amrita-shrestha
createdAt: May 14, 2024
tags: ownCloud Infinite Scale, oCIS, oCIS-with-Keycloak, Keycloak
createdAt: May 31, 2024
tags: ownCloud, oCIS, oCIS-with-Keycloak, Keycloak
banner: https://blog.jankaritech.com/src/assets/Keycloak/images/oCIS-Keycloak/oCIS-with-Keycloak.png
---

[In the previous blog](/src/assets/Keycloak/Keycloak.md), we explored the general functionality of Keycloak. In this current post, I will show how to setup of the [oCIS](https://owncloud.dev/ocis/)(file-sync and share platform) with Keycloak.
[In the previous blog](/src/assets/Keycloak/Keycloak.md), we explored the general functionality of Keycloak. In this current post, I will show how to set up of the [oCIS](https://owncloud.dev/ocis/)(file-sync and share platform) with Keycloak.

## oCIS with Keycloak
## oCIS With Keycloak
Make sure [Docker Engine](https://docs.docker.com/engine/install/) and [Docker Compose](https://docs.docker.com/compose/install/) has been installed in your system.

### Run services
### Run Services
Before setting up oCIS with Keycloak, it's essential to deploy both oCIS and Keycloak services. In this blog, I will explain how to do that using `docker compose`.
Here, oCIS and Keycloak runs behind Traefik as reverse proxy. Traefik generates self-signed certificates for oCIS and Keycloak.
Here, oCIS and Keycloak runs behind **Traefik** as reverse proxy. **Traefik** generates self-signed certificates for oCIS and Keycloak.

You can either download the docker code from [GitHub](https://github.com/amrita-shrestha/keycloak-ocis/blob/master/compose.yaml) or utilize the code provided below:

Expand Down Expand Up @@ -157,7 +158,7 @@ Docker compose serves three services:
6. Create a new user:

- With `username: admin` and other informations:
- With `username: admin` and other information:

![create user](/src/assets/Keycloak/images/oCIS-Keycloak/create-user-1.png)
![add user information](/src/assets/Keycloak/images/oCIS-Keycloak/create-user-2.png)
Expand All @@ -179,9 +180,9 @@ Docker compose serves three services:
![update-roles](/src/assets/Keycloak/images/oCIS-Keycloak/update-roles.png)
> Note: oCIS default role_claim is 'roles'
8. Go to url `https://host.docker.internal:9200/` reload if already opened
8. Go to url `https://host.docker.internal:9200/`, reload if already opened
![login to oCIS with keycloak](/src/assets/Keycloak/images/oCIS-Keycloak/oCIS-Keycloak-login.png)
Enter `username: admin` and `password: admin` to login oCIS
Enter `username: admin` and `password: admin` to log into oCIS

### Setting Up oCIS With Keycloak Using JSON files
Keycloak provides an [Importing and Exporting Realms](https://www.keycloak.org/server/importExport) feature. If we have JSON configuration files then we can avoid setting services in keycloak.
Expand Down

0 comments on commit fd19b2b

Please sign in to comment.