public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

keycloak.tests: Test HTTPS support

This commit is contained in:
talyz 2021-05-14 14:39:03 +02:00
parent ba00b0946e
commit 2d8a870813
No known key found for this signature in database
GPG Key ID: 2DED2151F4671A2B
1 changed files with 14 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
nixos/tests/keycloak.nix
View File

@ -3,7 +3,8 @@
# client using their Keycloak login. # client using their Keycloak login.
let let
frontendUrl = "http://keycloak/auth"; certs = import ./common/acme/server/snakeoil-certs.nix;
frontendUrl = "https://${certs.domain}/auth";
initialAdminPassword = "h4IhoJFnt2iQIR9"; initialAdminPassword = "h4IhoJFnt2iQIR9";
keycloakTest = import ./make-test-python.nix ( keycloakTest = import ./make-test-python.nix (
@ -17,15 +18,27 @@ let
nodes = { nodes = {
keycloak = { ... }: { keycloak = { ... }: {
virtualisation.memorySize = 1024; virtualisation.memorySize = 1024;
security.pki.certificateFiles = [
certs.ca.cert
];
networking.extraHosts = ''
127.0.0.1 ${certs.domain}
'';
services.keycloak = { services.keycloak = {
enable = true; enable = true;
inherit frontendUrl initialAdminPassword; inherit frontendUrl initialAdminPassword;
sslCertificate = certs.${certs.domain}.cert;
sslCertificateKey = certs.${certs.domain}.key;
database = { database = {
type = databaseType; type = databaseType;
username = "bogus"; username = "bogus";
passwordFile = pkgs.writeText "dbPassword" "wzf6vOCbPp6cqTH"; passwordFile = pkgs.writeText "dbPassword" "wzf6vOCbPp6cqTH";
}; };
}; };
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
xmlstarlet xmlstarlet
libtidy libtidy