Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Keycloak Integration #234

Closed
tobiasschaefer opened this issue Feb 26, 2021 · 5 comments
Closed

Keycloak Integration #234

tobiasschaefer opened this issue Feb 26, 2021 · 5 comments
Labels
enhancement New feature or request

Comments

@tobiasschaefer
Copy link
Collaborator

Does the Camunda Keycloak integration work?

see https://github.com/camunda/camunda-bpm-identity-keycloak

Todo
@tobiasschaefer tobiasschaefer added the enhancement New feature or request label Feb 26, 2021
@martisaw
Copy link
Contributor

martisaw commented Mar 26, 2021
edited
Loading

What I tested:
I created a keycloak user that I used to

  • log into the Webapps
  • get responses from the rest api with basic-auth enabled

Working example:
Check out this branch https://github.com/martisaw/micronaut-camunda-bpm/tree/keycloak

Instruction

  1. Start keycloak docker run -p 8080:8080 -e KEYCLOAK_USER=admin -e KEYCLOAK_PASSWORD=admin -e DB_VENDOR="h2" quay.io/keycloak/keycloak:12.0.4. Follow the installation instructions here. Add a test user.

I had some problems with Docker. You need to provide the -e DB_VENDOR="h2". Otherwise it does not start.

  1. Add the dependecy implementation("org.camunda.bpm.extension:camunda-bpm-identity-keycloak:2.0.0")
  2. Add plugin code (covered by Support ProcessEngine Plugins #143 and the instructions of the plugin)
@Singleton
@ConfigurationProperties("plugin.identity.keycloak")
public class KeyCloakPlugin extends KeycloakIdentityProviderPlugin {}
  1. Configure the application.yml
plugin.identity.keycloak:
  keycloakIssuerUrl: http://localhost:8080/auth/realms/master
  keycloakAdminUrl: http://localhost:8080/auth/admin/realms/master
  clientId: camunda-identity-service
  clientSecret: # you get this from keycloak
  useEmailAsCamundaUserId: true
  administratorGroupName: camunda-admin
  1. Start the application and log in with your created test user. Bear in mind that your user needs an e-mail address.

@tobiasschaefer
Copy link
Collaborator Author

Thanks @martisaw for the documentation in this issue and the example - I'm closing this issue now.

If there is enough demand we might document this somewhere but for now this should be sufficient since the keycloak integration behaves like any other plugin which is already documented.

@tobiasschaefer
Copy link
Collaborator Author

tobiasschaefer commented Mar 26, 2021
edited
Loading

@raghung: If I'm not mistaken you asked in the webinar in February 2021 if the Camunda Micronaut Integration supports Keycloak.

In the webinar we said it should work - now we can confirm it does :-) See details in this issue.

@raghung
Copy link

raghung commented Mar 26, 2021

Thanks @tobiasschaefer, it helps. I am planning to migrate current Springboot app to Micronaut🙂

@tobiasschaefer
Copy link
Collaborator Author

Hi @raghung ,

wow - good to hear that our integration works for you :-)

As an open source project we're not aware of all installations. However, we'd love to hear your feedback. And of course we would also like to discuss what you are using the Micronaut Camunda Integration for to prioritise the next steps. I'm curious what you are using it for.

Are you interested in an exchange via mail or online meeting? I'd be happy if you contact me at tobias.schaefer@novatec-gmbh.de

tobiasschaefer added a commit to tobiasschaefer/micronaut-camunda-bpm that referenced this issue Nov 23, 2021
@tobiasschaefer
Issue camunda-community-hub#234: Document Keycloak based on informati…
dcfe821 
…on contained in issue
tobiasschaefer added a commit that referenced this issue Nov 23, 2021
@tobiasschaefer
Issue #234: Document Keycloak based on information contained in issue
2d3044a
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@raghung @tobiasschaefer @martisaw