This is dockerised Keycloak system. Keycloak support openid_connect.
This project is part of "Transformation Numérique" project from FFCU (https://www.uncu.fr/).
It's designed to be connected to a Dolibarr instance and other partners applciations.
## Setting up your environement
...
...
@@ -14,11 +13,11 @@ It's designed to be connected to a Dolibarr instance and other partners applciat
`docker-compose up`
## Configuration
## Configuration
### Create realm, first user and connect first application
### Create realm, first user and connect first application
Follow the official [get started tutorial](https://www.keycloak.org/getting-started/getting-started-docker)
Follow the official [get started tutorial](https://www.keycloak.org/getting-started/getting-started-docker)
### Link a Dolibarr instance to Keycloak
...
...
@@ -34,8 +33,8 @@ To set up SSO with dolibarr you need folow this insctruction :
2. Generate the dolibarr variable with `dolibarr_variables.py`. If you don't know where to find the information requested by the script, see Prerequisites
3. Put generated variables in Dolibarr > Setup > Other Setup
4. Configure the authentication methods in conf.php (dolibarr_src/htdocs/conf/conf.php) and add openid_connect. `$dolibarr_main_authentication='openid_connect'`
5.
- In dev : choose username matching : `preferred_username`
5.
- In dev : choose username matching : `preferred_username`
- In prod : Choose mail matching method
For many information, follow the [dolibarr tutorial](https://wiki.dolibarr.org/index.php?title=Authentication,_SSO_and_SSL#Mode_openid_connect)
...
...
@@ -44,15 +43,14 @@ For many information, follow the [dolibarr tutorial](https://wiki.dolibarr.org/i
#### Final config KeyCloak Dolibarr for Prod (WIP)
- In Realm settings > Login, check following options
- Forgot password
- Remember me
- Email as username
- login with email
- Forgot password
- Remember me
- Email as username
- login with email
- verify email
- Realm settings > Email, configur your SMTP parameters + mail informations
