Hi.
This is we docker-compose file:
version: '3.7'
services:
postgres:
image: postgres:13.1
container_name: postgres
environment:
POSTGRES_DB: keycloak
POSTGRES_USER: keycloak
POSTGRES_PASSWORD: password
keycloak:
image: quay.io/keycloak/keycloak:latest
container_name: keycloak
environment:
DB_VENDOR: POSTGRES
DB_ADDR: postgres
DB_DATABASE: keycloak
DB_USER: keycloak
DB_PASSWORD: password
KEYCLOAK_USER: admin
KEYCLOAK_PASSWORD: password
PROXY_ADDRESS_FORWARDING: "true"
ports:
- 192.168.50.199:8080:8080
volumes:
- key_data:/opt/jboss/keycloak/standalone/
depends_on:
- postgres
volumes:
key_data:
name: key_data
driver: local
And we nginx config is:
server {
listen 80 ;
server_name identity.domain.com www.identity.domain.com;
return 301 https://$server_name$request_uri;
}
server {
listen 443 ssl;
server_name identity.domain.com www.identity.domain.com;
ssl on;
ssl_certificate /etc/ssl/domain.com.pem;
ssl_certificate_key /etc/ssl/domain.com.key;
location / {
proxy_pass http://192.168.50.199:8080;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Port $server_port;
proxy_buffering off;
proxy_set_header Referer $http_referer;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection ‘upgrade’;
}
On ip address is ok, but with a domain not work and we get welcome to nginx page.
Even we change config keycloak manually, means we bind config file standalon.xml to host and change this line:
<http-listener name="default" socket-binding="http" redirect-socket="https" proxy-address-forwarding="${env.PROXY_ADDRESS_FORWARDING:true}" enable-http2="true"/>
<https-listener name="https" socket-binding="https" proxy-address-forwarding="${env.PROXY_ADDRESS_FORWARDING:true}" security-realm="ApplicationRealm" enable-http2="true"/>
but not work yet. Where did I go wrong?
thanks.