Create KeyCloak SSO Quickstart Guide
Feature Request
Why
Goal is to write a keycloak sso quickstart that will allow people to get hands on experience. Configuring, setting up, and integrating KeyCloak, SSO, auth proxy, and make it more accessible to new folks w/o keycloak experience.
Proposed Solution
Create a 2 k3d cluster setup, (2 clusters is the recommended way of deploying keycloak), this also allows keycloak + bb core to be accessible via k3d's 443 even though they need 2 LBs.
Single k8s cluster setup using chart/keycloak-dev-values.yaml and https://repo1.dso.mil/platform-one/big-bang/bigbang/-/blob/master/docs/developer/development-environment.md#multi-ingress-gateway-support-with-metallb-and-k3d guide
This would be a quickstart guide in guides/deployment_scenarios
Note: This came from Jira
https://jira.il2.dso.mil/browse/BBOI-1007
How to properly configure KeyCloak isn't well documented.
Tasks:
- Figure out how to deploy keycloak, authservice, and configure keycloak sso to front a service existing in the same cluster.
- Figure out how to implement sso where keycloak spans across 2 clusters
- Figure out how to do it with HTTPS cert signed by a custom CA / a mkcert cert.
- Figure out how to document a quickstart guide using 2 clusters that's completable within 1-2 hours. https://repo1.dso.mil/platform-one/big-bang/bigbang/-/tree/keycloak_sso_quickstart/docs/guides/deployment_scenarios