Running Keycloak Server on OpenShift
Keycloak provides a OpenShift cartridge to make it easy to get it running on OpenShift. If you don't already
have
an account or don't know how to create applications go to
first. You can
create the Keycloak instance either with the web tool or the command line tool, both approaches are described
below.
It's important that immediately after creating a Keycloak instance you open the Administration Console
and login to reset the password. If this is not done anyone can easily gain admin rights to your Keycloak instance.
Create Keycloak instance with the web tool
Open
and click onAdd Application.
Scroll down to the bottom of the page to find the
Code Anything
section. Insert
https://raw.github.com/keycloak/openshift-keycloak-cartridge/master/metadata/manifest.yml
into the
URL to a cartridge definition
field and click onNext. Fill in the
following form and click onCreate Application.
Click on Continue to the application overview page. Under the list of applications you should
find your Keycloak instance and the status should be Started. Click on it to open the Keycloak
servers homepage.
Create Keycloak instance with the web tool
Run the following command from a terminal:
rhc app create <APPLICATION NAME> https://raw.github.com/keycloak/openshift-keycloak-cartridge/master/metadata/manifest.yml
Replace <APPLICATION NAME> with the name you want (for example keycloak).
Once the instance is created the rhc tool outputs details about it. Open the returned URL in a
browser to open the Keycloak servers homepage.
Next steps
The Keycloak servers homepage should show the Keycloak logo and Welcome to Keycloak.
There should also be a link to the Administration Console. Open that and log in using username
admin and password admin. On the first login you should be asked
to reset the password.
On OpenShift Keycloak has been configured to only accept requests over https. If you try to use http
you should be redirected to https.