build: Bump keycloak from 24 to 25.0.6 (#290)

just-seba · web-flow · commit 660366956efd · 2024-11-15T18:52:33.000+01:00
diff --git a/compose/openems-dev/compose.yaml b/compose/openems-dev/compose.yaml
@@ -28,7 +28,7 @@ services:
       --spi-theme-cache-templates=false
 
   keycloak-config:
-    image: quay.io/adorsys/keycloak-config-cli:latest-24.0.1
+    image: quay.io/adorsys/keycloak-config-cli:latest-25
     depends_on:
       - keycloak
     volumes:
diff --git a/devops/templates/compose-up.sh b/devops/templates/compose-up.sh
@@ -17,4 +17,4 @@ echo '👪 Configure keycloak'
 docker run --rm \
   --env-file ./keycloak/config/.env \
   --volume ./keycloak/config:/config \
-  quay.io/adorsys/keycloak-config-cli:latest-24.0.1
+  quay.io/adorsys/keycloak-config-cli:latest-25
diff --git a/devops/templates/keycloak/.env b/devops/templates/keycloak/.env
@@ -1,9 +1,11 @@
 # https://www.keycloak.org/server/all-config
-# Reverse proxy
-KC_PROXY_HEADERS=xforwarded
+
+# Hostname: https://www.keycloak.org/server/hostname
+## TLS termination
 KC_HTTP_ENABLED=true
+## Reverse proxy
+KC_PROXY_HEADERS=xforwarded
 KC_HOSTNAME=auth.opencleanenergy.org
-KC_HTTP_RELATIVE_PATH=/
 
 # Admin
 KEYCLOAK_ADMIN={{KEYCLOAK_ADMIN}}
diff --git a/keycloak/Dockerfile b/keycloak/Dockerfile
@@ -1,4 +1,4 @@
-FROM quay.io/keycloak/keycloak:24.0
+FROM quay.io/keycloak/keycloak:25.0.6
 
 # User Id: 1000
 # see https://github.com/keycloak/keycloak/blob/main/quarkus/container/Dockerfile
diff --git a/keycloak/debug-keycloak/Caddyfile b/keycloak/debug-keycloak/Caddyfile
@@ -0,0 +1,8 @@
+auth.dev.local {
+	handle /whoami {
+		reverse_proxy whoami:80
+	}
+	handle {
+		reverse_proxy keycloak:8080
+	}
+}
diff --git a/keycloak/debug-keycloak/compose.yaml b/keycloak/debug-keycloak/compose.yaml
@@ -0,0 +1,49 @@
+volumes:
+  proxy_data:
+  proxy_config:
+  keycloak_database_data:
+
+secrets:
+  keycloak-env:
+    file: ./keycloak/.env
+
+services:
+  proxy:
+    image: caddy:2
+    volumes:
+      - proxy_data:/data
+      - proxy_config:/config
+      - ./Caddyfile:/etc/caddy/Caddyfile
+    ports:
+      - 80:80
+      - 443:443
+
+  whoami:
+    image: traefik/whoami
+
+  keycloak:
+    image: keycloak:local
+    build:
+      context: ../
+    depends_on:
+      - keycloak-database
+    secrets:
+      - source: keycloak-env
+        target: .env
+    command: start
+
+  keycloak-database:
+    image: postgres:15-alpine
+    volumes:
+      - keycloak_database_data:/var/lib/postgresql/data
+    environment:
+      POSTGRES_DB: dev
+      POSTGRES_USER: dev
+      POSTGRES_PASSWORD: dev
+
+  adminer:
+    image: adminer:latest
+    ports:
+      - 5002:8080
+    environment:
+      - ADMINER_DEFAULT_SERVER=keycloak-database
diff --git a/keycloak/debug-keycloak/keycloak/.env b/keycloak/debug-keycloak/keycloak/.env
@@ -0,0 +1,21 @@
+# https://www.keycloak.org/server/all-config
+
+# Hostname: https://www.keycloak.org/server/hostname
+## TLS termination
+KC_HTTP_ENABLED=true
+## Reverse proxy
+KC_PROXY_HEADERS=xforwarded
+KC_HOSTNAME=auth.dev.local
+
+KEYCLOAK_ADMIN=admin
+KEYCLOAK_ADMIN_PASSWORD=admin
+
+KC_DB=postgres
+KC_DB_URL_HOST=keycloak-database
+KC_DB_URL_DATABASE=dev
+KC_DB_USERNAME=dev
+KC_DB_PASSWORD=dev
+
+# Theme
+OPEN_CLEAN_ENERGY_LEGAL_NOTICE_URL=https://opencleanenergy.org/legal-notice/
+OPEN_CLEAN_ENERGY_PRIVACY_POLICY_URL=https://opencleanenergy.org/privacy-policy/
diff --git a/keycloak/themes/open-clean-energy/login/template.ftl b/keycloak/themes/open-clean-energy/login/template.ftl
@@ -1,5 +1,5 @@
 <#import "footer.ftl" as loginFooter>
-<#-- https://github.com/keycloak/keycloak/blob/24.0.8/themes/src/main/resources/theme/base/login/template.ftl -->
+<#-- https://github.com/keycloak/keycloak/blob/25.0.6/themes/src/main/resources/theme/base/login/template.ftl -->
 <#macro registrationLayout bodyClass="" displayInfo=false displayMessage=true displayRequiredFields=false>
 <!DOCTYPE html>
 <html class="${properties.kcHtmlClass!}"<#if realm.internationalizationEnabled> lang="${locale.currentLanguageTag}"</#if>>
@@ -31,23 +31,26 @@
             <script src="${url.resourcesPath}/${script}" type="text/javascript"></script>
         </#list>
     </#if>
+    <script type="importmap">
+        {
+            "imports": {
+                "rfc4648": "${url.resourcesCommonPath}/node_modules/rfc4648/lib/rfc4648.js"
+            }
+        }
+    </script>
     <script src="${url.resourcesPath}/js/menu-button-links.js" type="module"></script>
     <#if scripts??>
         <#list scripts as script>
             <script src="${script}" type="text/javascript"></script>
         </#list>
     </#if>
-    <#if authenticationSession??>
-        <script type="module">
-            import { checkCookiesAndSetTimer } from "${url.resourcesPath}/js/authChecker.js";
+    <script type="module">
+        import { checkCookiesAndSetTimer } from "${url.resourcesPath}/js/authChecker.js";
 
-            checkCookiesAndSetTimer(
-              "${authenticationSession.authSessionId}",
-              "${authenticationSession.tabId}",
-              "${url.ssoLoginInOtherTabsUrl?no_esc}"
-            );
-        </script>
-    </#if>
+        checkCookiesAndSetTimer(
+          "${url.ssoLoginInOtherTabsUrl?no_esc}"
+        );
+    </script>
 </head>
 
 <body class="${properties.kcBodyClass!}">

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-FROM quay.io/keycloak/keycloak:24.0`
	`1`	`+FROM quay.io/keycloak/keycloak:25.0.6`
`2`	`2`
`3`	`3`	`# User Id: 1000`
`4`	`4`	`# see https://github.com/keycloak/keycloak/blob/main/quarkus/container/Dockerfile`