This docker-compose setup demonstrates how to protect some web service behind an oauth2-proxy + keycloak authentification.
- Add
127.0.0.1 keycloak
to your/etc/hosts
. this is necessary for the keycloak redirection - Run
docker-compose up
- Login to keycloak at
http://keycloak:8080
asadmin/admin
and create a new user in theapp-realm
realm, and check its "verified email" status. - Now try to login with your new user via http://127.0.0.1:3000
- To signout from the target app, call
/oauth2/sign_out