Merge branch 'aims' into aims-persist

2021-01-14 11:21:18 -05:00 · 2021-01-14 11:21:18 -05:00 · a933edb6bd
commit a933edb6bd
parent 366a5121de 44b6f26f4f
4 changed files with 28 additions and 6 deletions
--- a/.env
+++ b/.env
@ -3,3 +3,4 @@ EXTERNAL_RESOURCE_DIR=~
 PROXY_PROTOCOL=http
 PROXY_HOST=localhost
 PROXY_PORT=8080
 IDENTITY_SERVICE_BASEURL=http://auth.example.org:8080
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -11,9 +11,13 @@ services:
        environment:
            KEYCLOAK_USER: admin
            KEYCLOAK_PASSWORD: admin
-            KEYCLOAK_HOSTNAME: ${PROXY_HOST}
+            KEYCLOAK_HOSTNAME: auth.example.org
            KEYCLOAK_IMPORT: /tmp/keycloak-alfresco-realm.json
            KEYCLOAK_STATISTICS: enabled
        networks:
            default:
                aliases:
                    - "auth.example.org"
        volumes:
            - ./keycloak-alfresco-realm.json:/tmp/keycloak-alfresco-realm.json:ro
            - keycloak-volume:/opt/jboss/keycloak/standalone/data:rw
--- a/keycloak-alfresco-realm.json
+++ b/keycloak-alfresco-realm.json
@ -18,9 +18,10 @@
      "name": "Alfresco Products",
      "enabled": true,
      "alwaysDisplayInConsole": false,
-      "redirectUris": [
+      "redirectUris": [ "*" ],
-        "*"
+      "standardFlowEnabled": true,
-      ],
+      "implicitFlowEnabled": true,
      "directAccessGrantsEnabled": false,
      "publicClient": true,
      "protocol": "openid-connect",
      "attributes": {
@ -28,5 +29,18 @@
      }
    }
  ],
-  "requiredCredentials": [ "password" ]
+  "requiredCredentials": [ "password" ],
  "users": [
    {
      "username" : "admin.1",
      "enabled": true,
      "credentials" : [
        {
          "type" : "password",
          "value" : "password"
        }
      ],
      "realmRoles": [ "user", "admin" ]
    }
  ]
 }
--- a/nginx-ingress/nginx.conf
+++ b/nginx-ingress/nginx.conf
@ -19,7 +19,10 @@ http {
        proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
        proxy_redirect off;
-        proxy_buffering off;
+#        proxy_buffering off;
        proxy_buffer_size	64k;
        proxy_buffers		4 256k;
        proxy_busy_buffers_size	256k;
        proxy_set_header Host              $http_host;
        proxy_set_header X-Real-IP         $remote_addr;
        proxy_set_header X-Forwarded-For   $proxy_add_x_forwarded_for;