This workshop(and guides) were created in intent to learn the basics of working with SSO server using RHSSO v7.6.4.GA (aka Keycloak).
- The Keycloak server (RHSSO v7.6.4.GA) must be up and running on th local machine (localhost:8080).
- The realm configuration is imported from realm-export.json file as well.
- NodeJS v.16+ with npm package manager.
- Some IDE (e.g VSCode).
-
Get project from repository (git clone).
-
Start RHSSO(Keycloak) services Navigate to the setup/containers directory from the root of project. Run
docker-compose up -dorpodman-compose up -dNote: For the first run, the restart of the RHSSO container may be required:docker-compose restart rh-sso-server-ha1 -d -
Project setup Navigate to the setup/apps directory from the root of project. Run
install_all.shorinstall_all.bat- for details, see here -
Ater the setup completion, the services and applications must be available at ther own locations as following:
application/service Base URL Sub paths kc-protected-sa-service http://localhost:3005/api/user, /admin, /messageskc-protected-m2m-service http://localhost:3004/api/user, /admin, /messageskc-unprotected-service http://localhost:3003/api/messageskc-api-gatewayhttp://localhost:3003/apikc-react http://localhost:5000RHSSO (Keycloak) http://localhost:8080/authNote: The
.../apiand/messagespaths are unprotected in all services -
Credentials
-
RHSSO(Keycloak) server
user:admin
password:admin -
Realm user credentials
user:user1,user2,user3
password:pwd
-
This workshop is built around a demo project that showcases multiple ways to integrate applications with Single Sign-On (SSO) using RH-SSO.
To help participants understand both the development and configuration aspects of SSO, the project is accompanied by two complementary guides. Each guide covers the same features and flows implemented in the demo, but from a different perspective:
-
RHSSO Developer Guide - Focuses on how SSO is integrated into the application code. It explains authentication flows, token handling, and front-end/back-end interactions from a developer's point of view.
-
RHSSO Configuration Guide - Explains how to configure Keycloak to support those flows. It covers client setup, roles, realms, mappers, and other configuration steps from the perspective of an administrator.
- Red Hat Single Sign-On (RHSSO) High-Availability - setting up a Red Hat Single Sign-On (RHSSO) high-availability (HA) in various configurations.
Some sections are still under development.
2023 - 2025