From 34eb34c5fcc840528b3a70a77aa7c39adaecec08 Mon Sep 17 00:00:00 2001 From: Stian Thorgersen Date: Wed, 18 Jun 2014 11:08:06 +0100 Subject: [PATCH] Added documentation to specify https redirect port --- .../en/en-US/modules/server-installation.xml | 17 ++++++++++++++--- 1 file changed, 14 insertions(+), 3 deletions(-) diff --git a/docbook/reference/en/en-US/modules/server-installation.xml b/docbook/reference/en/en-US/modules/server-installation.xml index f93d579485..d7428d642c 100755 --- a/docbook/reference/en/en-US/modules/server-installation.xml +++ b/docbook/reference/en/en-US/modules/server-installation.xml @@ -510,15 +510,26 @@ keycloak-war-dist-all-1.0-beta-3-SNAPSHOT/ Follow the documentation for your web server to enable SSL and configure reverse proxy for Keycloak. It is important that you make sure the web server sets the X-Forwarded-For and X-Forwarded-Proto headers on the requests made to Keycloak. Next you need to enable - proxy-address-forwarding on the Keycloak http connector. This is done by editing - standalone/configuration/standalone.xml. + proxy-address-forwarding on the Keycloak http connector. Assuming that your reverse + proxy doesn't use port 8443 for SSL you also need to configure what port http traffic is redirected to. + This is done by editing standalone/configuration/standalone.xml. + First add proxy-address-forwarding and redirect-socket to the http-listener + element: ... - + ... +]]> + Then add a new socket-binding element to the socket-binding-group element: + + ... + + ... + ]]>