Skip to content

docker: Add keycloak service and configure its use in swh-web

Antoine Lambert requested to merge generated-differential-D2774-source into generated-differential-D2774-target

Add keycloak service in order to manage users authentication and authorization in swh services.

A sample SoftwareHeritage realm exported to JSON format is loaded when the service starts.

Keycloak admin console is available to host through this URL: http://localhost:5080/keycloak/ (user: admin, password: admin).

Some test users are also created in the SoftwareHeritage realm when the swh-web service starts. Their username/password are listed below:

  • admin/admin (also member of the staff group, which makes swh-web admin features available once logged in)
  • johndoe/johndoe-swh
  • janedoe/janedoe-swh

Login process in swh-web can be tested by applying swh-web!263 (closed) locally and using the docker-compose.override.yml file.

Migrated from D2774 (view on Phabricator)

Merge request reports