keycloak-docker/Dockerfile at main · ComputerScienceHouse/keycloak-docker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
## computersciencehouse/keycloak
FROM quay.io/keycloak/keycloak:19.0.2
MAINTAINER Computer Science House (rtp@csh.rit.edu)

ARG THEME_VERSION=2.0.1

WORKDIR /opt/keycloak
# Temporarily elevate permissions
USER root

# Download theme
ADD https://s3.csh.rit.edu/csh-material-login/csh-material-login_$THEME_VERSION.jar \
    ./providers
# Download TOTP API provider
ADD https://github.com/costowell/keycloak-totp-api/releases/download/1.0.1-kc19/keycloak-totp-api.jar \
    ./providers

# Add Kerberos client config
ADD krb5.conf /etc/
ADD https://ipa10-nrh.csh.rit.edu/ipa/config/ca.crt /etc/ipa/ca.crt

# Set permissions on the Wildfly standalone directory for OpenShift deployments
RUN chown -R keycloak:0 /tmp && \
  chmod -R g+rw /tmp && \
  chmod -R 774 ./data ./providers && \
  chown -R keycloak:0 ./data ./providers

# Drop permissions
USER keycloak