Configure Keycloak for Host and Export keycloak.json

Access Keycloak admin console

Keycloak has a configuration information that needs to be accessible by any service that communicates with Keycloak. We download this information and put it in a file called keycloak.json in the base CEDAR directory.

Access the Keycloak adminintration console on the auth sub-domain, e.g.,

https://auth.metadatacenter.net
https://auth.staging.metadatacenter.net

and log in as administrator.

Perform Host-specific Configuration

First, select the CEDAR realm and go to Realm Settings (via menu on left).

Select the Keys tab. Click on Generate new keys.

Then go to the Tokens tab and set SSO Session Idle to 24 hours.

Select the Clients option on the left menu and click on cedar-angular-app.

Set Valid Redirect URIs to the cedar.<HOSTNAME>/* for HTTP and HTTPS, e.g.,

http://cedar.staging.metadatacenter.net/*
https://cedar.staging.metadatacenter.net/*.

Similarly, set Web Origins to cedar.<HOSTNAME> for HTTP and HTTPS, e.g.,

http://cedar.staging.metadatacenter.net
https://cedar.staging.metadatacenter.net.

The click on Save.

Export keycloak.json

Within the Clients area then select the Installation tab and select Keycloak OIDC keycloak.json from the dropdown.

Copy the content of the text area, paste it into a file named keycloak.json in $CEDAR_HOME:

vi $CEDAR_HOME/keycloak.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Configure Keycloak for Host and Export keycloak.json

Access Keycloak admin console

Perform Host-specific Configuration

Export keycloak.json

Clone this wiki locally