Skip to content

radicallyopensecurity/keycloak-ros-theme

BranchesTags

Repository files navigation

keycloak-ros-theme

Radically Open Security flavored Keycloak theme.

ROS Themed Keycloak Login Page

See the wiki for more screenshots.

Dependencies

  • keycloak-app-passwords
  • Linux (not tested on Mac or Windows)
  • Bash
  • Make
  • (optional) docker/podman
  • (optional) inotify
  • (optional) zip

Quick Start

Build the distribution files:

make

Choose one, replacing /opt/keycloak with your Keycloak installation directory.

  • Copy the dist/keycloak-ros-theme directory to /opt/keycloak/themes/ros.
  • Copy the dist/keycloak-ros-theme.jar file to /opt/keycloak/providers.

To build just the dist files:

make build

Make sure your Keycloak installation has both the theme and extension installed from keycloak-app-passwords.

The theme should be visible under themes in the realm settings. A restart may be required.

To redirect users to the applications account settings, use the welcome theme by setting the environment variable: KC_SPI_THEME_WELCOME_THEME to keycloak-ros-theme.

Note: You should do this after bootstrapping keycloak, because the bootstrap page is configured in the default welcome theme, which is what we're overriding here.

Development

A development environment is provided using docker/podman.

When running for the first time, we have to initialize OpenLDAP:

docker compose up openldap
docker exec -it openldap /bin/sh
cd /tmp/ldapscripts
sh add-schema.sh

Then we have import the realm into Keycloak, while keeping OpenLDAP running:

docker compose up -d openldap
make import

Create a .env, pointing to your keycloak-app-passwords installation.

cp .env.sample .env

For example

KC_ROS_APP_PASSWORDS_EXTENSION_PATH=/home/user/git/keycloak-app-passwords/extension/target/keycloak-app-passwords-DEV.jar
KC_ROS_APP_PASSWORDS_THEME_PATH=/home/user/git/keycloak-app-passwords/theme/dist_keycloak/keycloak-theme-for-kc-all-other-versions.jar

Now we can run the development build.

docker compose up

Visit http://localhost:8080 to see the Keycloak installation.

Make changes to assets/* or theme/*. Then run:

make

Or watch for changes and automatically rebuild when a file is changed:

make watch

See the .env.* files for login credentials. It goes without saying, but don't use these docker containers or env files in production. They are highly insecure and only meant to be ran locally for development.

LICENSE

LGPL-3.0

About

Radically Open Security Keycloak theme

radicallyopensecurity.com

Topics

theme keycloak keycloak-theme

Resources

Readme

License

GPL-3.0 license

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

3 tags

Contributors 2

  •  
  •  

Languages