Keycloak packaged for Kubernetes
- Java 77.7%
- Dockerfile 21.6%
- Shell 0.6%
- CSS 0.1%
| .github | ||
| .woodpecker | ||
| src | ||
| .justfile | ||
| .markdownlint.yaml | ||
| .yamllint.yaml | ||
| Dockerfile | ||
| Dockerfile.dockerignore | ||
| LICENSE | ||
| pom.xml | ||
| README.md | ||
| renovate.json | ||
Keycloak
Keycloak container image for Kokuwa.
Features
- BaseImage:
- debian:stable-slim (amd64 & arm64)
- eclipse-temurin:17-jre (amd64 & arm64)
- distroless/java17:nonroot (amd64)
- preconfigured with PostgeSQL
- preconfigured for Kubernetes:
- health enabled
- quarkus metrics enabled
- keycloak metrics enabled (see keycloak-event-metrics) with model names
- logs as json
- run with uid:gid 1000:1000
- integration test with k3s and deployment of example theme
Why
in June 2022 no preconfigured Keycloak container image without legacy Keycloak was available.
Use this image if you intend to:
- use Keycloak in Quarkus version, not Wildfly version
- use PostgeSQL as backend
- no need for auto-build for faster startup
- run Keycloak not as
root
Alternatives
| Image | amd64 | arm64 |
|---|---|---|
| kokuwaio/keycloak:debian | ||
| kokuwaio/keycloak:temurin | ||
| kokuwaio/keycloak:distroless | ||
| keycloak/keycloak | ||
| bitnami/keycloak |
Registries & Tags
Registries:
- ghcr.io/kokuwaio/keycloak
- docker.io/kokuwaio/keycloak
- registry.kokuwa.io/kokuwaio/keycloak (no HA setup!)
Tags:
latest<version>specific version for Keycloak- all tags are available with suffix
-debian,-temurinor-distrolessfor specific base images
Develop and testing
Start k3s: mvn pre-integration-test
Open http://keycloak.127.0.0.1.nip.io:8080/admin/master/console/ or use kubectl:
export KUBECONFIG=~/.kube/k3s.yaml
kubectl get all --all-namespaces