docs: Improve Keycloak documentation for command line sign-in (#8758)

Documenting what is discussed in #2932 Signed-off-by: Antoine Pultier <antoine.pultier@sintef.no> Signed-off-by: Antoine Pultier <antoine.pultier@sintef.no> Co-authored-by: pasha-codefresh <pavel@codefresh.io>
argoproj · Dec 2, 2022 · bb21fcb · bb21fcb
1 parent 73be2c9
commit bb21fcb
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/docs/operator-manual/user-management/keycloak.md b/docs/operator-manual/user-management/keycloak.md
@@ -17,6 +17,8 @@ Configure the client by setting the __Access Type__ to _confidential_ and set th
 hostname. It should be https://{hostname}/auth/callback (you can also leave the default less secure https://{hostname}/* ). You can also set the
 __Base URL__ to _/applications_.
 
+If you want to allow command line access, __Access Type__ must be set to _public_ and you also need to add http://localhost:8085/auth/callback in the list of Valid Redirect URIs. Then users can login using `argocd login {hostname} --sso`.
+
 ![Keycloak configure client](../../assets/keycloak-configure-client.png "Keycloak configure client")
 
 Make sure to click __Save__. You should now have a new tab called __Credentials__. You can copy the Secret that we'll use in our ArgoCD