bb9c811a65
- automatically parses ${vault.<KEY>} expressions to obtain the key that contains the secret in the vault.
- enchances the capabilities of the VaultProvider by offering methods to convert the raw secrets into other types.
27 lines
1.3 KiB
Text
27 lines
1.3 KiB
Text
|
|
echo *** Updating keycloak-server subsystem ***
|
|
echo ** Adding truststore spi**
|
|
/subsystem=keycloak-server/spi=truststore/:add
|
|
/subsystem=keycloak-server/spi=truststore/provider=file/:add(enabled=true,properties={ \
|
|
file => "${auth.server.truststore:${jboss.home.dir}/standalone/configuration/keycloak.truststore}", \
|
|
password => "${auth.server.truststore.password:secret}", \
|
|
hostname-verification-policy => "WILDCARD", \
|
|
disabled => "false"})
|
|
|
|
echo ** Adding login-protocol spi **
|
|
/subsystem=keycloak-server/spi=login-protocol/:add
|
|
/subsystem=keycloak-server/spi=login-protocol/provider=saml/:add(enabled=true,properties={knownProtocols => "[\"http=${auth.server.http.port}\",\"https=${auth.server.https.port}\"]"})
|
|
|
|
echo ** Adding vault spi **
|
|
/subsystem=keycloak-server/spi=vault/:add
|
|
/subsystem=keycloak-server/spi=vault/provider=plaintext/:add(enabled=true,properties={dir => "${jboss.home.dir}/standalone/configuration/vault"})
|
|
|
|
echo ** Adding theme modules **
|
|
/subsystem=keycloak-server/theme=defaults/:write-attribute(name=modules,value=[org.keycloak.testsuite.integration-arquillian-testsuite-providers])
|
|
|
|
echo ** Adding provider **
|
|
/subsystem=keycloak-server/:write-attribute(name=providers, \
|
|
value=[ classpath:${jboss.home.dir}/providers/*, \
|
|
module:org.keycloak.testsuite.integration-arquillian-testsuite-providers \
|
|
] \
|
|
)
|