-
Notifications
You must be signed in to change notification settings - Fork 231
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Keycloak Docker image: Provide ENVs for HTTPS/SSL with a Reverse Proxy #3141
Comments
Only effective for the http listener, not https currently! |
gunterze
added a commit
to dcm4che-dockerfiles/dcm4chee-arc-psql
that referenced
this issue
Mar 30, 2022
gunterze
added a commit
to dcm4che-dockerfiles/dcm4chee-arc-psql
that referenced
this issue
Mar 30, 2022
gunterze
added a commit
to dcm4che-dockerfiles/dcm4chee-arc-psql
that referenced
this issue
Mar 30, 2022
seems HTTP_PROXY_ADDRESS_FORWARDING=true renders WILDFLY_RESOLVE_PEER_ADDRESS=true ineffective. Surprisingly, it becomes effective with adding a logging filter i.e. vua jboss-cli script:
(only tested on archive wildfly, but likely applies on keycloak as well as this seems wildfly image issue) |
gunterze
added a commit
to dcm4che-dockerfiles/keycloak
that referenced
this issue
Mar 31, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Provide ENVs for HTTPS/SSL with a Reverse Proxy:
HTTP_PROXY_ADDRESS_FORWARDING
If this is enabled then the X-Forwarded-For and X-Forwarded-Proto headers will be used to determine the peer address.
This allows applications that are behind a proxy to see the real address of the client, rather than the address
of the proxy. (optional, default is
false
).REDIRECT_HTTPS_PORT
HTTPS port to redirect requests that require security too. (optional, default is
8443
).Have to be set different to
HTTPS_PORT
, if running behind a HTTPS/SSL reverse proxy listing on a different port.Related #3140
The text was updated successfully, but these errors were encountered: