Difference between revisions of "User authentication - ACTIVAGE"

From CommonsLab
Jump to: navigation, search
(Middleware)
Line 27: Line 27:
 
* Add "JAVA_OPTS="$JAVA_OPTS -XX:+CreateMinidumpOnCrash"" to standalone.conf to fix failed core dumps of JVM
 
* Add "JAVA_OPTS="$JAVA_OPTS -XX:+CreateMinidumpOnCrash"" to standalone.conf to fix failed core dumps of JVM
 
* Set up [https://www.keycloak.org/docs/latest/server_installation/index.html#setting-up-https-ssl SSL]
 
* Set up [https://www.keycloak.org/docs/latest/server_installation/index.html#setting-up-https-ssl SSL]
 
+
* After creating jks convert to pem
 +
** keytool -importkeystore -srckeystore keycloak.jks -destkeystore foo.p12 -srcstoretype jks -deststoretype pkcs12
 +
**
  
 
===Configure keycloak===
 
===Configure keycloak===

Revision as of 16:26, 28 June 2019

Setup

  • Set up Raspberry Pi with latest Raspbian

Hardware

  • Connect RFID-RC522 Reader
  • Connect screen
  • Enable touch on screen

Gravitee

Keycloak

  • Install mysql
  • Download and unzip keycloak server
  • Download JDBC connector
  • Configure classpath
  • Add "JAVA_OPTS="$JAVA_OPTS -XX:+CreateMinidumpOnCrash"" to standalone.conf to fix failed core dumps of JVM
  • Set up SSL
  • After creating jks convert to pem
    • keytool -importkeystore -srckeystore keycloak.jks -destkeystore foo.p12 -srcstoretype jks -deststoretype pkcs12

Configure keycloak

  • Create new realm "UAH"
  • Create new client "raspberrypi"
  • Add user federation with LDAP

Middleware

  • Setup flask and python app sample
  • Install flask_oidc
  • install python-ldap dependencies sudo apt-get install libsasl2-dev python-dev libldap2-dev libssl-dev
  • install python-ldap pip install python-ldap
  • Copy keycloak.crt to client /etc/ssl/certs then run update-ca-certificates command
  • python app.py

Setup UAH

  • Start keycloak (standalone.sh) on boot
  • Start script for UI (chromium on kiosk mode)


Setup test