coolify/templates/compose/keycloak.yaml

# documentation: https://www.keycloak.org
# slogan: Keycloak is an open-source Identity and Access Management tool.
# category: auth
# tags: keycloak,identity,access,management,iam,authentication,authorization,security,oauth2,openid-connect,sso,single-sign-on,saml,rbac,ldap,jwt,social-login
# logo: svgs/keycloak.svg
# port: 8080

services:
  keycloak:
    image: quay.io/keycloak/keycloak:26.1
    command:
      - start
    environment:
      - SERVICE_URL_KEYCLOAK_8080
      - TZ=${TIMEZONE:-UTC}
      - KC_BOOTSTRAP_ADMIN_USERNAME=${SERVICE_USER_ADMIN}
      - KC_BOOTSTRAP_ADMIN_PASSWORD=${SERVICE_PASSWORD_ADMIN}
      - KC_HOSTNAME=${SERVICE_URL_KEYCLOAK}
      - KC_HTTP_ENABLED=${KC_HTTP_ENABLED:-true}
      - KC_HEALTH_ENABLED=${KC_HEALTH_ENABLED:-true}
      - KC_PROXY_HEADERS=${KC_PROXY_HEADERS:-xforwarded}
    volumes:
      - keycloak-data:/opt/keycloak/data
    healthcheck:
      test:
        [
          "CMD-SHELL",
          "exec 3<>/dev/tcp/127.0.0.1/9000; echo -e 'GET /health/ready HTTP/1.1\r\nHost: localhost:9000\r\nConnection: close\r\n\r\n' >&3;cat <&3 | grep -q '\"status\": \"UP\"' && exit 0 || exit 1",
        ]
      interval: 5s
      timeout: 20s
      retries: 10
feat: add keycloak template 2024-08-17 14:36:52 +00:00			`# documentation: https://www.keycloak.org`
			`# slogan: Keycloak is an open-source Identity and Access Management tool.`
feat(templates): added category per service 2025-08-17 16:23:57 +00:00			`# category: auth`
feat: add keycloak template 2024-08-17 14:36:52 +00:00			`# tags: keycloak,identity,access,management,iam,authentication,authorization,security,oauth2,openid-connect,sso,single-sign-on,saml,rbac,ldap,jwt,social-login`
			`# logo: svgs/keycloak.svg`
			`# port: 8080`

			`services:`
			`keycloak:`
fix(keycloak): update keycloak image version to 26.1 2025-03-24 08:46:01 +00:00			`image: quay.io/keycloak/keycloak:26.1`
feat: add keycloak template 2024-08-17 14:36:52 +00:00			`command:`
			`- start`
			`environment:`
feat(templates): add new service templates and update existing compose files for various applications 2025-08-10 08:10:22 +00:00			`- SERVICE_URL_KEYCLOAK_8080`
fix: remove env, change timezone 2024-08-31 06:34:10 +00:00			`- TZ=${TIMEZONE:-UTC}`
fix(service): replace deprecated credentials env variables on keycloak service 2025-03-21 00:56:45 +00:00			`- KC_BOOTSTRAP_ADMIN_USERNAME=${SERVICE_USER_ADMIN}`
			`- KC_BOOTSTRAP_ADMIN_PASSWORD=${SERVICE_PASSWORD_ADMIN}`
feat(templates): add new service templates and update existing compose files for various applications 2025-08-10 08:10:22 +00:00			`- KC_HOSTNAME=${SERVICE_URL_KEYCLOAK}`
Fix: Keycloak 2024-10-08 19:33:23 +00:00			`- KC_HTTP_ENABLED=${KC_HTTP_ENABLED:-true}`
			`- KC_HEALTH_ENABLED=${KC_HEALTH_ENABLED:-true}`
			`- KC_PROXY_HEADERS=${KC_PROXY_HEADERS:-xforwarded}`
feat: add keycloak template 2024-08-17 14:36:52 +00:00			`volumes:`
			`- keycloak-data:/opt/keycloak/data`
			`healthcheck:`
fix: remove env, change timezone 2024-08-31 06:34:10 +00:00			`test:`
			`[`
			`"CMD-SHELL",`
Upgrade keycloak template to v26.0 Upgrades the keycloak template from 25.0.2 to 26.0. Slightly modifies the health check to work with v26. The previous health check resulted in an error: https://gist.github.com/sarath-soman/5d9aec06953bbd0990c648605d4dba07?permalink_comment_id=5225055#gistcomment-5225055 The new health check was taken from the same discussion: https://gist.github.com/sarath-soman/5d9aec06953bbd0990c648605d4dba07?permalink_comment_id=5225953#gistcomment-5225953 2024-10-26 13:26:45 +00:00			`"exec 3<>/dev/tcp/127.0.0.1/9000; echo -e 'GET /health/ready HTTP/1.1\r\nHost: localhost:9000\r\nConnection: close\r\n\r\n' >&3;cat <&3 \| grep -q '\"status\": \"UP\"' && exit 0 \|\| exit 1",`
fix: remove env, change timezone 2024-08-31 06:34:10 +00:00			`]`
feat: add keycloak template 2024-08-17 14:36:52 +00:00			`interval: 5s`
			`timeout: 20s`
			`retries: 10`