7f048300fe
* Support management port for health and metrics Closes #19334 Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Deprecate option Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Remove relativePath first-class citizen, rename ManagementSpec Signed-off-by: Martin Bartoš <mabartos@redhat.com> * Fix KeycloakDistConfiguratorTest Signed-off-by: Martin Bartoš <mabartos@redhat.com> --------- Signed-off-by: Martin Bartoš <mabartos@redhat.com>
40 lines
1.2 KiB
Docker
40 lines
1.2 KiB
Docker
FROM registry.access.redhat.com/ubi9 AS ubi-micro-build
|
|
|
|
ENV KEYCLOAK_VERSION 999.0.0-SNAPSHOT
|
|
ARG KEYCLOAK_DIST=https://github.com/keycloak/keycloak/releases/download/$KEYCLOAK_VERSION/keycloak-$KEYCLOAK_VERSION.tar.gz
|
|
|
|
RUN dnf install -y tar gzip
|
|
|
|
ADD $KEYCLOAK_DIST /tmp/keycloak/
|
|
|
|
# The next step makes it uniform for local development and upstream built.
|
|
# If it is a local tar archive then it is unpacked, if from remote is just downloaded.
|
|
RUN (cd /tmp/keycloak && \
|
|
tar -xvf /tmp/keycloak/keycloak-*.tar.gz && \
|
|
rm /tmp/keycloak/keycloak-*.tar.gz) || true
|
|
|
|
RUN mv /tmp/keycloak/keycloak-* /opt/keycloak && mkdir -p /opt/keycloak/data
|
|
RUN chmod -R g+rwX /opt/keycloak
|
|
|
|
ADD ubi-null.sh /tmp/
|
|
RUN bash /tmp/ubi-null.sh java-17-openjdk-headless glibc-langpack-en findutils
|
|
|
|
FROM registry.access.redhat.com/ubi9-micro
|
|
ENV LANG en_US.UTF-8
|
|
|
|
# Flag for determining app is running in container
|
|
ENV KC_RUN_IN_CONTAINER true
|
|
|
|
COPY --from=ubi-micro-build /tmp/null/rootfs/ /
|
|
COPY --from=ubi-micro-build --chown=1000:0 /opt/keycloak /opt/keycloak
|
|
|
|
RUN echo "keycloak:x:0:root" >> /etc/group && \
|
|
echo "keycloak:x:1000:0:keycloak user:/opt/keycloak:/sbin/nologin" >> /etc/passwd
|
|
|
|
USER 1000
|
|
|
|
EXPOSE 8080
|
|
EXPOSE 8443
|
|
EXPOSE 9000
|
|
|
|
ENTRYPOINT [ "/opt/keycloak/bin/kc.sh" ]
|