Skip to content

bancodobrasil/jamie-auth-service

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Jamie Auth Service

Alternative languages:

Leia a página em Português Brasileiro About_en

Description

This project contains Keycloak, which is necessary to set up the Jamie API and Jamie UI projects.

Dependencies

Installation

With Docker Compose (Recommended)

The Jamie UI project already contains a docker-compose.yaml file, which will make easier to run Keycloak in local environment.

You can check the command to start the docker compose Keycloak service in the repository of the previous.

With Docker

Open the terminal in the Jamie Auth Service project directory. Then, run the Docker command:

docker build -t keycloak .
docker run -d -p 8080:8080 --name keycloak keycloak

Setting Up Keycloak

In localhost:8080, a screen similar to the following will load:

Keycloak Initial Screen

Click on Administration Console, and a login screen will open. Enter the following credentials:

Username: admin
Password: admin

Afterward, you will need to create the realm. To do this, click on the area marked in red in the image. Under the "Master" section, you will find the option to create a new Realm.

Logged-in Keycloak

Upon opening this option, the screen will display:

Creating Realm

In Realm name, type jamie, then click create. On the initial Keycloak screen, where you clicked to create a Realm, the newly created jamie Realm will appear. Enter it.

Next, in the side menu, click on Clients, and a screen similar to the following will open:

Clients Menu

Click on Create Client, and we will create two clients, one for Jamie UI and another for Jamie API.

Jamie UI Client Configuration

Fill in the fields with the following data:

  1. Client ID: jamie
  2. Name: Jamie UI

In ACCESS Settings, add the following:

In Capability config:

Uncheck:

  • Client authentication
  • Authorization

Enable(ON):

  • Standard flow
  • Direct access grants

Jamie API Client Configuration

Fill in the fields with the following data:

  1. Client ID: jamie-api

In ACCESS Settings, add the following:

In Capability config:

Enable(ON):

  • Client authentication
  • Authorization

Uncheck:

  • Standard flow
  • Direct access grants

Realm Roles Configuration

Now, we need to configure the Realm Roles. Four Realm roles will be created: reader, editor, manager, admin (optional). In the side menu, click on Realm Roles, and a screen similar to the following will open. Click on Create Role.

Realm Roles

Fill in the fields with the following data:

Reader

  1. Role name: reader
  2. Save

Editor

  1. Role name: editor
  2. In Action, click on Add associated roles, then click on the reader role we created, and click on Assign
  3. Save

Manager

  1. Role name: manager
  2. In Action, click on Add associated roles, then click on the reader and editor roles we created, and click on Assign
  3. Save

Admin

  1. Role name: admin
  2. In Action, click on Add associated roles, then click on the reader, editor, and manager roles we created, and click on Assign
  3. Save

User Configuration

In the side menu, under Users, click on Add user, as shown in the image below:

Keycloak Users

In Username, type a username you desire, and enable Email verified. Adding your email is optional.

Next, click on Credentials and Set password.

Set Password

Enter the password and password confirmation, and disable the Temporary field. Then, click on Role mapping, which is next to Credentials. Click on admin, then click on Assign.

With this, when you enter Jamie UI, you'll need to enter the username and password you created.

Jamie API and UI

Next, follow the instructions in the README of Jamie API or Jamie UI.

About

No description, website, or topics provided.

Resources

License

Stars

Watchers

Forks

Packages

 
 
 

Contributors 3

  •  
  •  
  •