gitea_admin/dev-platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add:Keycloak SSO integration with Gitea

Browse Source
This commit is contained in:
gitea_admin
2026-04-27 17:23:07 +00:00
parent 7034e4a5bc
commit 509375f24d
2 changed files with 47 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.env
+1
View File
@@ -1,2 +1,3 @@
POSTGRES_PASSWORD=postegres_project.m169 POSTGRES_PASSWORD=postegres_project.m169
GITEA_DB_PASSWORD=gitea_project.m169 GITEA_DB_PASSWORD=gitea_project.m169
KEYCLOAK_DB_PASSWORD=keycloak_project.m169
docker-compose.yml
+46 -3
View File
@@ -7,13 +7,20 @@ services:
- "--providers.docker=true" - "--providers.docker=true"
- "--providers.docker.exposedbydefault=false" - "--providers.docker.exposedbydefault=false"
- "--entrypoints.web.address=:80" - "--entrypoints.web.address=:80"
- "--entrypoints.websecure.address=:443"
- "--certificatesresolvers.letsencrypt.acme.email=contact@mota-thomas.com"
- "--certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json"
- "--certificatesresolvers.letsencrypt.acme.httpchallenge=true"
- "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web"
environment: environment:
DOCKER_HOST: unix:///var/run/docker.sock DOCKER_HOST: unix:///var/run/docker.sock
DOCKER_API_VERSION: "1.54" DOCKER_API_VERSION: "1.54"
ports: ports:
- "80:80" - "80:80"
- "443:443"
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock:ro - /var/run/docker.sock:/var/run/docker.sock:ro
- traefik_letsencrypt:/letsencrypt
gitea-db: gitea-db:
image: postgres:15 image: postgres:15
@@ -34,15 +41,51 @@ services:
GITEA__database__NAME: gitea GITEA__database__NAME: gitea
GITEA__database__USER: gitea GITEA__database__USER: gitea
GITEA__database__PASSWD: ${GITEA_DB_PASSWORD} GITEA__database__PASSWD: ${GITEA_DB_PASSWORD}
GITEA__server__ROOT_URL: http://83.228.250.32/ GITEA__server__ROOT_URL: https://gitea.mota-thomas.com/
volumes: volumes:
- gitea_data:/data - gitea_data:/data
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.gitea.rule=PathPrefix(`/`)" - "traefik.http.routers.gitea.rule=Host(`gitea.mota-thomas.com`)"
- "traefik.http.routers.gitea.entrypoints=web" - "traefik.http.routers.gitea.entrypoints=websecure"
- "traefik.http.routers.gitea.tls.certresolver=letsencrypt"
- "traefik.http.services.gitea.loadbalancer.server.port=3000" - "traefik.http.services.gitea.loadbalancer.server.port=3000"
keycloak-db:
image: postgres:15
environment:
POSTGRES_DB: keycloak
POSTGRES_USER: keycloak
POSTGRES_PASSWORD: ${KEYCLOAK_DB_PASSWORD}
volumes:
- keycloak_db_data:/var/lib/postgresql/data
keycloak:
image: quay.io/keycloak/keycloak:24.0
command: start-dev
environment:
KC_DB: postgres
KC_DB_URL_HOST: keycloak-db
KC_DB_URL_DATABASE: keycloak
KC_DB_USERNAME: keycloak
KC_DB_PASSWORD: ${KEYCLOAK_DB_PASSWORD}
KEYCLOAK_ADMIN: admin
KEYCLOAK_ADMIN_PASSWORD: admin
KC_HTTP_RELATIVE_PATH: /auth
KC_PROXY_HEADERS: xforwarded
KC_HOSTNAME_STRICT: false
KC_HTTP_ENABLED: true
depends_on:
- keycloak-db
labels:
- "traefik.enable=true"
- "traefik.http.routers.keycloak.rule=Host(`keycloak.mota-thomas.com`)"
- "traefik.http.routers.keycloak.entrypoints=websecure"
- "traefik.http.routers.keycloak.tls.certresolver=letsencrypt"
- "traefik.http.services.keycloak.loadbalancer.server.port=8080"
volumes: volumes:
gitea_db_data: gitea_db_data:
gitea_data: gitea_data:
keycloak_db_data:
traefik_letsencrypt: