hello there,
in order to have fully automated docker development environment, our team deployment of keycloak does the realm import everytime the container gets up. no problems there.
unfortunately something that is never applied to the realm are the client service account roles, we always have to add them manually eventhough they exists in the users exported file.
everything else, including clients, secrets, users, … gets imported.
is there a known limitation on this part of the import?
any help is much appreciated
Our export configurations:
-Dkeycloak.migration.action=export
-Dkeycloak.migration.provider=dir
-Dkeycloak.migration.dir=/opt/jboss/keycloak/realm-config
-Dkeycloak.migration.usersExportStrategy=SAME_FILE
-Dkeycloak.migration.realmName=my-realm
-Djboss.socket.binding.port-offset=1
Our import configurations:
‘-Dkeycloak.migration.action=import’,
‘-Dkeycloak.migration.provider=dir’,
‘-Dkeycloak.migration.dir=/opt/jboss/keycloak/realm-config’,
‘-Dkeycloak.migration.strategy=OVERWRITE_EXISTING’,