Update Keycloak deployment for Dokploy with reverse proxy support (#402)

* Update KC envs and bump version use the v2 ENV Variables like KC_BOOTSTRAP_ADMIN_USERNAME * Update blueprints/keycloak/docker-compose.yml * Update blueprints/keycloak/docker-compose.yml --------- Co-authored-by: Mauricio Siu <47042324+Siumauricio@users.noreply.github.com>
2026-03-11 17:48:11 -05:00 · 2025-10-26 02:10:54 +02:00
parent 6d564b6f56
commit b598ba9b0f
1 changed files with 16 additions and 13 deletions
--- a/blueprints/keycloak/docker-compose.yml
+++ b/blueprints/keycloak/docker-compose.yml
@@ -1,5 +1,3 @@
-version: '3.8'
-
 services:
  postgres:
    image: postgres:16.2
@@ -9,24 +7,29 @@ services:
      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
    volumes:
      - postgres_data:/var/lib/postgresql/data
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U $$POSTGRES_USER -d $$POSTGRES_DB"]
+      interval: 10s
+      timeout: 5s
+      retries: 5
    restart: always
-
+    
  keycloak:
-    image: quay.io/keycloak/keycloak:26.0
+    image: quay.io/keycloak/keycloak:26.3.5
+    depends_on:
+      postgres:
+        condition: service_healthy
    environment:
      KC_DB: postgres
      KC_DB_URL: jdbc:postgresql://postgres:5432/${POSTGRES_DB}
      KC_DB_USERNAME: ${POSTGRES_USER}
      KC_DB_PASSWORD: ${POSTGRES_PASSWORD}
-      KEYCLOAK_ADMIN: ${KEYCLOAK_ADMIN}
-      KEYCLOAK_ADMIN_PASSWORD: ${KEYCLOAK_ADMIN_PASSWORD}
-      KC_HOSTNAME: ${KC_HOSTNAME}
-      KC_HOSTNAME_PORT: 8080
-      KC_HTTP_ENABLED: true
-      KC_HOSTNAME_STRICT_HTTPS: false
-      KC_HEALTH_ENABLED: true
-    depends_on:
-      - postgres
+      KC_BOOTSTRAP_ADMIN_USERNAME: ${KEYCLOAK_ADMIN}
+      KC_BOOTSTRAP_ADMIN_PASSWORD: ${KEYCLOAK_ADMIN_PASSWORD}
+      KC_HOSTNAME: ${KC_HOSTNAME}      
+      KC_HTTP_ENABLED: "true"               
+      KC_HEALTH_ENABLED: "true"
+      KC_PROXY_HEADERS: "xforwarded"
    command: start-dev
    restart: always