docker: Add keycloak service and configure its use in swh-web (!218) · Merge requests · Platform / Development / swh-environment

Add keycloak service in order to manage users authentication and authorization in swh services.

A sample SoftwareHeritage realm exported to JSON format is loaded when the service starts.

Keycloak admin console is available to host through this URL: http://localhost:5080/keycloak/ (user: admin, password: admin).

Some test users are also created in the SoftwareHeritage realm when the swh-web service starts. Their username/password are listed below:

admin/admin (also member of the staff group, which makes swh-web admin features available once logged in)
johndoe/johndoe-swh
janedoe/janedoe-swh

Login process in swh-web can be tested by applying swh-web!263 (closed) locally and using the docker-compose.override.yml file.

Migrated from D2774 (view on Phabricator)

docker: Add keycloak service and configure its use in swh-web