Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-4994

Configure profile in standalone.xml

    XMLWordPrintable

Details

    • Feature Request
    • Status: Closed
    • Major
    • Resolution: Won't Do
    • None
    • None
    • None
    • None

    Description

      Through profiles it's possible enable and disable individual features. This allows disabling a feature that is not used and also allows disabling some tech preview features by default. There are currently 4 features that can be enabled and disabled:

      • Authorization - by default enabled in KC, disabled in RH-SSO
      • Docker - by default disabled in both KC and RH-SSO
      • Impersonation - by default enabled in both KC and RH-SSO
      • Script - by default enabled in KC, disabled in RH-SSO

      Currently this is configured through profile.properties or system properties. It would be better to configure this through standalone.xml alongside everything else. Something like the following:

      <subsystem xmlns="urn:jboss:domain:keycloak-server:1.1">
          <web-context>auth</web-context>
          <profile>
              <features>
                  <feature name="authorization" enabled="true"/>
                  <feature name="docker" enabled="false"/>
                  <feature name="impersonation" enabled="true"/>
                  <feature name="script" enabled="true"/>
              </features>
          </profile>
          ....
      

      When building Keycloak the above defaults should be used, but when building RH-SSO (product profile) the default should be changed (authorization and script should be disabled by default).

      Attachments

        Activity

          People

            marko.strukelj@gmail.com Marko Strukelj
            sthorger@redhat.com Stian Thorgersen
            Michal Hajas Michal Hajas
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: