Keycloak on Docker

官文文档：https://www.keycloak.org/getting-started/getting-started-docker

我https,所以端改成8443

docker run -d --name keycloak -p 8443:8443 -e KEYCLOAK_USER=admin -e KEYCLOAK_PASSWORD=admin quay.io/keycloak/keycloak:15.0.2

nginx 配置

server
    {
        listen 80;
        #listen [::]:80;
        server_name keycloak.sample.com;
        rewrite ^(.*) http://$server_name$1 permanent;

    }
server{
        listen 443 ssl;
        server_name keycloak.sample.com;

        index /;
        root /var/www/keycloak.sample.com;

        ssl_certificate /etc/nginx/ssl/sample.com.crt;
        ssl_certificate_key /etc/nginx/ssl/sample.com.key;
        ssl_session_timeout 5m;
        ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
        ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
        ssl_prefer_server_ciphers on;

        location / {
                proxy_set_header Host $http_host;
                proxy_set_header X-Real-IP $remote_addr;
                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_pass https://localhost:8443;
        }

        access_log  /var/log/nginx/keyclock.sample.com.log;
}

posted @ 2021-09-01 00:44 builderman 阅读(142) 评论(0) 收藏举报

刷新页面返回顶部

软件民工

Keycloak on Docker

公告