Halbes-Byte
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docker-compose.yml‎
Lines changed: 53 additions & 9 deletions b/‎docker-compose.yml‎
Lines changed: 53 additions & 9 deletions
diff --git a/‎realms/README.md‎
Lines changed: 26 additions & 0 deletions b/‎realms/README.md‎
Lines changed: 26 additions & 0 deletions
@@ -5,3 +5,4 @@ target/
 start_vpn.sh
 server/generated-sources/
 data/
+.env
@@ -1,9 +1,53 @@
-services: 
-  backend:
-    build:
-      context: .
-      dockerfile: Dockerfile
-    image: panderu/study-buddies-backend:latest 
-    container_name: backend
-    ports: 
-      - "8080:8080"
+services:
+  keycloak_web1:
+    image: keycloak/keycloak:latest
+    container_name: kc-web1
+    environment:
+      KC_DB: postgres
+      KC_DB_URL: jdbc:postgresql://keycloakdb1:5432/keycloak
+      KC_DB_USERNAME: ${KC_DB_USERNAME}
+      KC_DB_PASSWORD: ${KC_DB_PASSWORD}
+
+      KEYCLOAK_ADMIN: ${KC_DB_USERNAME}
+      KEYCLOAK_ADMIN_PASSWORD: pass
+
+
+      KC_HOSTNAME: localhost
+      KC_HOSTNAME_PORT: 8080
+      KC_HOSTNAME_STRICT: 'false'
+      KC_HOSTNAME_STRICT_HTTPS: 'false'
+      KC_LOG_LEVEL: debug
+
+      KC_METRICS_ENABLED: 'true'
+      KC_HEALTH_ENABLED: 'true'
+      KC_PROXY: edge
+      KC_PROXY_HEADERS: forwarded
+    command: start-dev
+    depends_on:
+      - keycloakdb1
+    ports:
+      - '7070:8080'
+######################################################
+  keycloakdb1:
+    image: postgres:15
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+    environment:
+      POSTGRES_DB: keycloak
+      POSTGRES_USER: ${KC_DB_USERNAME}
+      POSTGRES_PASSWORD: ${KC_DB_PASSWORD}
+    ports:
+      - '5432:5432'
+ #spring:
+ #  build:
+ #    context: .
+ #    dockerfile: Dockerfile
+ #  # image: panderu/study-buddies-backend:latest
+ #  container_name: spring-backend
+ #  ports:
+ #    - "1516:8080"
+ #  depends_on:
+ #    - keycloak_web
+######################################################
+volumes:
+  postgres_data:
@@ -0,0 +1,26 @@
+# How to setup a new Keycloak instance
+*summary of [this Tutorial](https://medium.com/@nishada/keycloak-spring-boot-rbac-e8732a91909a)*
+
+1. Create Realm
+2. Ressource file: `sb-backend.json` (may take a minute or two)
+3. Users &rarr; Add User &rarr; **fill all fields** (Username, Email, First name, Last name) otherwise there will be an error &rarr; Create
+4. Users &rarr; Click on User &rarr; Credentials &rarr; Set password &rarr; **NOT TEMPORARY**
+5. Users &rarr; Click on User &rarr; Role mapping &rarr; Add Admin / Student role
+
+# How to request a JWT Token using Postman
+1. Create Post Request to `http://localhost:7070/realms/study-buddies/protocol/openid-connect/token`
+2. Set `Body` &rarr; `x-www-form-urlencoded`:
+
+|Key|Value|
+|:-:|:-:|
+|client_id|sb-backend|
+|grant_type|password|
+|username|User created above|
+|password|Password of user created above|
+
+3. *Optional:* View content of `access_token` [here](https://jwt.io/).
+
+# How to use a restricted endpoint using Postman
+1. Create Request
+2. Authorization &rarr; Auth Type: Bearer Token &rarr; paste full content of `access_token` from JWT request above into `Token` field.
+