hi all - sorry for asking, but I am pretty new with keycloak.
i setup the start-dev yesterday easily and it works pretty well, so i thought to do today my prod environment. But everytime I try to open the admin-console “/admin/master/console/” it stucks in “Loading the admin console”.
From browser I can see:
“Uncaught (in promise) Object { error: “Timeout when waiting for 3rd party check iframe message.” }”
My config:
cat Dockerfile:
FROM quay.io/keycloak/keycloak:latest as builder
ENV KC_HEALTH_ENABLED=true
ENV KC_METRICS_ENABLED=true
ENV KC_FEATURES=token-exchange
ENV KC_DB=postgres
# Install custom providers
RUN curl -sL https://github.com/aerogear/keycloak-metrics-spi/releases/download/2.5.3/keycloak-metrics-spi-2.5.3.jar -o /opt/keycloak/providers/keycloak-metrics-spi-2.5.3.jar
RUN /opt/keycloak/bin/kc.sh build
FROM quay.io/keycloak/keycloak:latest
COPY --from=builder /opt/keycloak/ /opt/keycloak/
WORKDIR /opt/keycloak
# for demonstration purposes only, please make sure to use proper certificates in production instead
ARG CERT="certificate.crt"
COPY $CERT /opt/keycloak/
RUN keytool -importcert -file $CERT -alias $CERT -storepass password -keystore conf/server.keystore -noprompt
# change these values to point to a running postgres instance
ENV KC_DB_URL=jdbc:postgresql://db:5432/keycloak
ENV KC_DB_USERNAME=keycloak
ENV KC_DB_PASSWORD=keycloak
ENV KC_DB_SCHEMA=public
ENV KC_HOSTNAME=localhost
ENTRYPOINT ["/opt/keycloak/bin/kc.sh"]
cat docker-compose.yml
version: '3.8'
services:
db:
image: postgres
restart: always
environment:
- POSTGRES_USER=keycloak
- POSTGRES_PASSWORD=keycloak
volumes:
- db:/var/lib/postgresql/data
container_name: keycloak_db
keycloak:
build:
context: .
dockerfile: Dockerfile
depends_on:
- db
environment:
KEYCLOAK_ADMIN: admin
KEYCLOAK_ADMIN_PASSWORD: admin
volumes:
- /etc/ssl/auth.crt:/etc/ssl/auth.crt
- /etc/ssl/auth.key:/etc/ssl/auth.key
ports:
- 8080:8080
- 8443:8443
container_name: keycloak_server
command: >-
start --optimized --db-url-host db --db-username keycloak --db-password keycloak \
--http-enabled true --https-certificate-file /etc/ssl/auth.crt --https-certificate-key-file /etc/ssl/auth.key \
--hostname-strict false
volumes:
db:
driver: local