Skip to content
Snippets Groups Projects
Commit 18ea3c4b authored by Christian Elberfeld's avatar Christian Elberfeld
Browse files

added keycloak as docker

parent 765afbbe
No related branches found
No related tags found
No related merge requests found
......@@ -109,6 +109,11 @@
servicename: "jabber",
domain: "jabber.warpzone.ms"
}
- {
role: webserver/docker_keycloak, tags: keycloak,
servicename: "keycloak",
domain: "keycloak.warpzone.ms"
}
- {
role: webserver/docker_mail, tags: mail
}
......
---
- include_tasks: ../functions/get_secret.yml
with_items:
- { path: /srv/keycloak/keycloak_admin_pass, length: 32 }
- { path: /srv/keycloak/postgres_user_pass, length: 24 }
- name: create folder struct for keycloak
file:
path: "{{ item }}"
state: "directory"
with_items:
- /srv/keycloak/
- /srv/keycloak/db/
- name: Konfig-Dateien erstellen
template:
src: "{{ item }}"
dest: "/srv/keycloak/{{ item }}"
with_items:
- docker-compose.yml
register: config
- name: stop keycloak docker
docker_compose:
project_src: /srv/keycloak/
state: absent
when: config.changed
- name: start keycloak docker
docker_compose:
project_src: /srv/keycloak/
state: present
version: "3"
services:
app:
image: jboss/keycloak:12.0.4
restart: always
depends_on:
- db
environment:
KEYCLOAK_USER: "keycloakadmin"
KEYCLOAK_PASSWORD: "{{ keycloak_admin_pass }}"
DB_VENDOR: "POSTGRES"
DB_ADDR: "db"
DB_DATABASE: "keycloak"
DB_USER: "keycloak"
DB_PASSWORD: "{{ postgres_user_pass }}"
PROXY_ADDRESS_FORWARDING: "true"
labels:
- traefik.enable=true
- traefik.http.routers.{{ servicename }}.rule=Host(`{{ domain }}`)
- traefik.http.routers.{{ servicename }}.entrypoints=websecure
- traefik.http.services.{{ servicename }}.loadbalancer.server.port=8080
networks:
- default
- mail
- web
db:
image: postgres:13.2
restart: always
volumes:
- /srv/keycloak/db:/var/lib/postgresql/data
environment:
POSTGRES_DB: keycloak
POSTGRES_USER: keycloak
POSTGRES_PASSWORD: "{{ postgres_user_pass }}"
networks:
- default
networks:
mail:
external: true
web:
external: true
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment