我正在尝试使用SSL设置keycloak docker容器,但它无法正常工作。
这是我使用的docker run命令:
docker run -p 7443:8443 -p 7080:8080 -e KEYCLOAK_USER=admin -e KEYCLOAK_PASSWORD=password -v ~/keycloak-config/standalone.xml:/opt/jboss/keycloak/standalone/configuration/standalone.xml -v ~/keycloak-config/ct.jks:/opt/jboss/keycloak/standalone/configuration/ct.jks -d jboss/keycloak
以下是standalone.xml文件的样子:
<security-realms>
<security-realm name="UndertowRealm">
<server-identities>
<ssl>
<keystore path="ct.jks" relative-to="jboss.server.config.dir" keystore-password="123456" />
</ssl>
</server-identities>
</security-realm>
<https-listener name="https" socket-binding="https" security-realm="UndertowRealm"/>
<inet-address value="${jboss.bind.address:127.0.0.1}"/>
<socket-binding-group name="standard-sockets" default-interface="public"
port-offset="${jboss.socket.binding.port-offset:0}">
<socket-binding name="management-http" interface="management"
port="${jboss.management.http.port:9990}"/>
<socket-binding name="management-https" interface="management"
port="${jboss.management.https.port:9993}"/>
<socket-binding name="ajp" port="${jboss.ajp.port:8009}"/>
<socket-binding name="http" port="${jboss.http.port:8080}"/>
<socket-binding name="https" port="${jboss.https.port:8443}"/>
<socket-binding name="txn-recovery-environment" port="4712"/>
<socket-binding name="txn-status-manager" port="4713"/>
<outbound-socket-binding name="mail-smtp">
<remote-destination host="localhost" port="25"/>
</outbound-socket-binding>
</socket-binding-group>
我正在尝试使用机器的IP地址访问keycloak。
谢谢, 拉胡