From f8a8dca92a69d7c158a02558701efd102ff29357 Mon Sep 17 00:00:00 2001 From: Bitnami Bot Date: Thu, 21 Mar 2024 17:18:31 +0100 Subject: [PATCH] [bitnami/keycloak] Release 23.0.7-debian-12-r4 (#63974) Signed-off-by: Bitnami Containers --- bitnami/keycloak/23/debian-12/Dockerfile | 4 +- .../opt/bitnami/scripts/keycloak-env.sh | 3 +- bitnami/keycloak/README.md | 72 +++++++++++-------- 3 files changed, 47 insertions(+), 32 deletions(-) diff --git a/bitnami/keycloak/23/debian-12/Dockerfile b/bitnami/keycloak/23/debian-12/Dockerfile index 2fdfbd1305a5..34665f9c5931 100644 --- a/bitnami/keycloak/23/debian-12/Dockerfile +++ b/bitnami/keycloak/23/debian-12/Dockerfile @@ -8,10 +8,10 @@ ARG TARGETARCH LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ - org.opencontainers.image.created="2024-03-15T01:23:45Z" \ + org.opencontainers.image.created="2024-03-21T15:42:15Z" \ org.opencontainers.image.description="Application packaged by VMware, Inc" \ org.opencontainers.image.licenses="Apache-2.0" \ - org.opencontainers.image.ref.name="23.0.7-debian-12-r3" \ + org.opencontainers.image.ref.name="23.0.7-debian-12-r4" \ org.opencontainers.image.title="keycloak" \ org.opencontainers.image.vendor="VMware, Inc." \ org.opencontainers.image.version="23.0.7" diff --git a/bitnami/keycloak/23/debian-12/rootfs/opt/bitnami/scripts/keycloak-env.sh b/bitnami/keycloak/23/debian-12/rootfs/opt/bitnami/scripts/keycloak-env.sh index 0b5f0fce9ac4..78e1afa3d512 100644 --- a/bitnami/keycloak/23/debian-12/rootfs/opt/bitnami/scripts/keycloak-env.sh +++ b/bitnami/keycloak/23/debian-12/rootfs/opt/bitnami/scripts/keycloak-env.sh @@ -173,8 +173,7 @@ KEYCLOAK_DATABASE_SCHEMA="${KEYCLOAK_DATABASE_SCHEMA:-"${DB_SCHEMA:-}"}" export KEYCLOAK_DATABASE_SCHEMA="${KEYCLOAK_DATABASE_SCHEMA:-public}" KEYCLOAK_JDBC_PARAMS="${KEYCLOAK_JDBC_PARAMS:-"${JDBC_PARAMS:-}"}" export KEYCLOAK_JDBC_PARAMS="${KEYCLOAK_JDBC_PARAMS:-}" -KEYCLOAK_JDBC_DRIVER="${KEYCLOAK_JDBC_DRIVER:-postgresql}" -export KEYCLOAK_JDBC_DRIVER="${KEYCLOAK_JDBC_DRIVER:-}" +export KEYCLOAK_JDBC_DRIVER="${KEYCLOAK_JDBC_DRIVER:-postgresql}" # System users (when running with a privileged user) export KEYCLOAK_DAEMON_USER="${KEYCLOAK_DAEMON_USER:-keycloak}" diff --git a/bitnami/keycloak/README.md b/bitnami/keycloak/README.md index 6c2dd6d7a5c1..e3fb943c827f 100644 --- a/bitnami/keycloak/README.md +++ b/bitnami/keycloak/README.md @@ -70,34 +70,50 @@ docker build -t bitnami/APP:latest . #### Customizable environment variables -| Name | Description | Default Value | -|------------------------------------|-----------------------------------------------------------------------------------------------|-------------------------------| -| `KEYCLOAK_MOUNTED_CONF_DIR` | Directory for including custom configuration files (that override the default generated ones) | `${KEYCLOAK_VOLUME_DIR}/conf` | -| `KEYCLOAK_ADMIN` | Keycloak administrator user | `user` | -| `KEYCLOAK_ADMIN_PASSWORD` | Keycloak administrator password | `bitnami` | -| `KEYCLOAK_HTTP_RELATIVE_PATH` | Set the path relative to "/" for serving resources. | `/` | -| `KEYCLOAK_HTTP_PORT` | HTTP port | `8080` | -| `KEYCLOAK_HTTPS_PORT` | HTTPS port | `8443` | -| `KEYCLOAK_BIND_ADDRESS` | Bind address | `$(hostname --fqdn)` | -| `KEYCLOAK_INIT_MAX_RETRIES` | Maximum retries for checking that the database works | `10` | -| `KEYCLOAK_CACHE_TYPE` | Defines the cache mechanism for high-availability. | `ispn` | -| `KEYCLOAK_ENABLE_STATISTICS` | Enable metrics for the database | `false` | -| `KEYCLOAK_ENABLE_HEALTH_ENDPOINTS` | Enable health endpoints | `false` | -| `KEYCLOAK_ENABLE_HTTPS` | Enable SSL certificates | `false` | -| `KEYCLOAK_HTTPS_USE_PEM` | Set to true to configure HTTPS using PEM certificates | `false` | -| `KEYCLOAK_LOG_LEVEL` | Keycloak log level | `info` | -| `KEYCLOAK_LOG_OUTPUT` | Keycloak log output | `default` | -| `KEYCLOAK_ROOT_LOG_LEVEL` | Keycloak root log level | `INFO` | -| `KEYCLOAK_PROXY` | Keycloak type proxy | `passthrough` | -| `KEYCLOAK_PRODUCTION` | Run in production mode | `false` | -| `KEYCLOAK_DATABASE_VENDOR` | Database vendor | `postgresql` | -| `KEYCLOAK_DATABASE_HOST` | Database backend hostname | `postgresql` | -| `KEYCLOAK_DATABASE_PORT` | Database backend port | `5432` | -| `KEYCLOAK_DATABASE_USER` | Database backend username | `bn_keycloak` | -| `KEYCLOAK_DATABASE_NAME` | Database name | `bitnami_keycloak` | -| `KEYCLOAK_DATABASE_SCHEMA` | PostgreSQL database schema | `public` | -| `KEYCLOAK_DAEMON_USER` | Keycloak daemon user when running as root | `keycloak` | -| `KEYCLOAK_DAEMON_GROUP` | Keycloak daemon group when running as root | `keycloak` | +| Name | Description | Default Value | +|-------------------------------------------------------------|-------------------------------------------------------------------------------------------------------|-------------------------------| +| `KEYCLOAK_MOUNTED_CONF_DIR` | Directory for including custom configuration files (that override the default generated ones) | `${KEYCLOAK_VOLUME_DIR}/conf` | +| `KEYCLOAK_ADMIN` | Keycloak administrator user | `user` | +| `KEYCLOAK_ADMIN_PASSWORD` | Keycloak administrator password | `bitnami` | +| `KEYCLOAK_HTTP_RELATIVE_PATH` | Set the path relative to "/" for serving resources. | `/` | +| `KEYCLOAK_HTTP_PORT` | HTTP port | `8080` | +| `KEYCLOAK_HTTPS_PORT` | HTTPS port | `8443` | +| `KEYCLOAK_BIND_ADDRESS` | Bind address | `$(hostname --fqdn)` | +| `KEYCLOAK_HOSTNAME` | Keycloak hostname | `nil` | +| `KEYCLOAK_INIT_MAX_RETRIES` | Maximum retries for checking that the database works | `10` | +| `KEYCLOAK_CACHE_TYPE` | Defines the cache mechanism for high-availability. | `ispn` | +| `KEYCLOAK_CACHE_STACK` | Apply a specific cache stack | `nil` | +| `KEYCLOAK_EXTRA_ARGS` | Add extra startup parameters to keycloak | `nil` | +| `KEYCLOAK_ENABLE_STATISTICS` | Enable metrics for the database | `false` | +| `KEYCLOAK_ENABLE_HEALTH_ENDPOINTS` | Enable health endpoints | `false` | +| `KEYCLOAK_ENABLE_HTTPS` | Enable SSL certificates | `false` | +| `KEYCLOAK_HTTPS_TRUST_STORE_FILE` | Path to the SSL truststore file | `nil` | +| `KEYCLOAK_HTTPS_TRUST_STORE_PASSWORD` | Password for decrypting the truststore file | `nil` | +| `KEYCLOAK_HTTPS_KEY_STORE_FILE` | Path to the SSL keystore file | `nil` | +| `KEYCLOAK_HTTPS_KEY_STORE_PASSWORD` | Password for decrypting the keystore file | `nil` | +| `KEYCLOAK_HTTPS_USE_PEM` | Set to true to configure HTTPS using PEM certificates | `false` | +| `KEYCLOAK_HTTPS_CERTIFICATE_FILE` | Path to the PEM certificate file | `nil` | +| `KEYCLOAK_HTTPS_CERTIFICATE_KEY_FILE` | Path to the PEM key file | `nil` | +| `KEYCLOAK_SPI_TRUSTSTORE_FILE` | Path to the Keycloak SPI truststore file | `nil` | +| `KEYCLOAK_SPI_TRUSTSTORE_PASSWORD` | Password for decrypting the SPI truststore file | `nil` | +| `KEYCLOAK_SPI_TRUSTSTORE_FILE_HOSTNAME_VERIFICATION_POLICY` | Hostqname verification policy for SPI connection over HTTPS/TLS | `nil` | +| `KEYCLOAK_LOG_LEVEL` | Keycloak log level | `info` | +| `KEYCLOAK_LOG_OUTPUT` | Keycloak log output | `default` | +| `KEYCLOAK_ROOT_LOG_LEVEL` | Keycloak root log level | `INFO` | +| `KEYCLOAK_PROXY` | Keycloak type proxy | `passthrough` | +| `KEYCLOAK_PRODUCTION` | Run in production mode | `false` | +| `KEYCLOAK_EXTRA_ARGS_PREPENDED` | Run with flags which are applied directly to keycloak executable | `nil` | +| `KEYCLOAK_DATABASE_VENDOR` | Database vendor | `postgresql` | +| `KEYCLOAK_DATABASE_HOST` | Database backend hostname | `postgresql` | +| `KEYCLOAK_DATABASE_PORT` | Database backend port | `5432` | +| `KEYCLOAK_DATABASE_USER` | Database backend username | `bn_keycloak` | +| `KEYCLOAK_DATABASE_NAME` | Database name | `bitnami_keycloak` | +| `KEYCLOAK_DATABASE_PASSWORD` | Database backend password | `nil` | +| `KEYCLOAK_DATABASE_SCHEMA` | PostgreSQL database schema | `public` | +| `KEYCLOAK_JDBC_PARAMS` | Extra JDBC connection parameters for the database (e.g.: `sslmode=verify-full&connectTimeout=30000`\) | `nil` | +| `KEYCLOAK_JDBC_DRIVER` | JDBC driver to set in the connection string for the database | `postgresql` | +| `KEYCLOAK_DAEMON_USER` | Keycloak daemon user when running as root | `keycloak` | +| `KEYCLOAK_DAEMON_GROUP` | Keycloak daemon group when running as root | `keycloak` | #### Read-only environment variables