Project Frontend Reactjs and Gateway Kong and OAuth Server SSO Keycloack and backend Spring
This is the official Docker Compose template for Kong.
You can find the official Docker distribution for Kong at https://hub.docker.com/_/kong.
This Docker Compose template provisions a Kong container with a Postgres database, plus a nginx load-balancer. After running the template, the nginx-lb load-balancer will be the entrypoint to Kong.
To run this template execute:
$ docker-compose upTo scale Kong (ie, to three instances) execute:
$ docker-compose scale kong=3Kong will be available through the nginx-lb instance on port 8000, and 8001. You can customize the template with your own environment variables or datastore configuration.
Kong's documentation can be found at https://docs.konghq.com/.
If you have any problems with or questions about this image, please contact us through a GitHub issue.
You are invited to contribute new features, fixes, or updates, large or small; we are always thrilled to receive pull requests, and do our best to process them as fast as we can.
Before you start to code, we recommend discussing your plans through a GitHub issue, especially for more ambitious contributions. This gives other contributors a chance to point you in the right direction, give you feedback on your design, and help you find out if someone else is working on the same thing.
https://www.jerney.io/secure-apis-kong-keycloak-1
https://www.jerney.io/secure-apis-kong-keycloak-2
https://cagline.medium.com/authenticate-and-authorize-react-routes-component-with-keycloak-666e85662636
OIDC plugin:
name=oidc
client_id=kong
client_secret=f1e755b7-d7f9-458c-af51-3767c803b118
discovery=http://172.21.0.1:8180/auth/realms/kong/.well-known/openid-configuration
introspection_endpoint=http://172.21.0.1:8180/auth/realms/kong/protocol/openid-connect/token/introspect
- create config plugin oidc for integrate with keycloack instrospect endpoint
$ curl -s -X POST http://localhost:8001/plugins \
-d name=oidc \
-d config.client_id=kong \
-d config.client_secret=f1e755b7-d7f9-458c-af51-3767c803b118 \
-d config.discovery=http://172.21.0.1:8180/auth/realms/kong/.well-known/openid-configuration \
-d config.introspection_endpoint=http://172.21.0.1:8180/auth/realms/kong/protocol/openid-connect/token/introspect \
| python -mjson.tool $ make k-setup
$ make k-ip
$ make k-dashboardadd to hosts: stock.product-backend.local api.kong-admin.local api.kong-gateway.local api.konga.local auth.keycloak.local stock.frontend.local
browser access:
http://api.kong-gateway.local/stock/products
http://api.kong-admin.local
http://api.kong-gateway.local
http://api.konga.local
http://auth.keycloak.local
http://stock.frontend.local
Kong in k8s reference:
https://medium.com/@suyashmohan/setting-up-postgresql-database-on-kubernetes-24a2a192e962
https://medium.com/engineering-applift/kong-in-kubernetes-1c4ef3c47dae
https://medium.com/@loschi.pablo/konga-in-kubernetes-cd9c31e71c75
kong secret: 372b211b-b101-48a6-b0fc-a7751c58ed95