Custom Keycloak Build
Last updated
Last updated
SunbirdRC uses a custom keycloak image which is configured to enable/disable NONCE validation. The required changes are made in this repository, .
NONCE validation is default enabled in keycloak, to turn off the validation VALIDATE_NONCE
should be set to "false".
This configuration is not provided by keycloak by default even in the latest version. We have configured this change, particularly for enabling Digilocker Meripehchaan SSO (Task: ).
JAVA 11 (tested with 11.0.8)
Maven
Clone the repository (Contains the source code)
Run the below command to generate the distribution jar. Reference mvn clean install -Pdistribution
The above command should create keycloak-14.0.0.tar.gz
in distribution/server-dist/target
directory
Clone the repository (Contains the build files)
git checkout 14.0.0
cd server
Run a Python HTTP server in the to access the distributed jar file.
python -m http.server 8001
Build the keycloak docker image,
docker build -t sunbirdrc/keycloak --build-arg KEYCLOAK_DIST=http://<YOUR_IP_ADDRESS>:8001/keycloak-14.0.0.tar.gz .
Tag the new docker image and publish it to dockerhub / docker registry