keycloak

htl-leo-itp-2325-4-5BHITM · Sep 27, 2024 · 8eb80a5 · 8eb80a5
1 parent 9fedb91
commit 8eb80a5
Show file tree

Hide file tree

Showing 27 changed files with 368 additions and 10 deletions.
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -3,7 +3,7 @@ run-name: ${{ github.actor }} is testing out GitHub Actions 🚀
 on: [push]
 jobs:
   build:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-24.04
     steps:
     - uses: actions/checkout@v4
     - uses: actions/setup-java@v4
@@ -12,11 +12,21 @@ jobs:
         java-version: '21'
         cache: 'maven'
         cache-dependency-path: 'backend/pom.xml' # optional
+    - name: Login to GitHub Container Registry
+      uses: docker/login-action@v3
+      with:
+        registry: ghcr.io
+        username: ${{ github.actor }}
+        password: ${{ secrets.GITHUB_TOKEN }}
     - run: |
           mvn -B package
-      working-directory: backend
+          ./build.sh
+      working-directory: ./backend
     - name: Release
       uses: softprops/action-gh-release@v1
       with:
         files: backend/traget/app/backend/target/code-with-quarkus-dev.jar
     - run: echo "🍏 This job's status is ${{ job.status }}."
+    - run : | 
+          ./build.sh
+      working-directory: ./k8s
diff --git a/app/.idea/.gitignore b/app/.idea/.gitignore
diff --git a/app/.idea/app.iml b/app/.idea/app.iml
diff --git a/app/.idea/compiler.xml b/app/.idea/compiler.xml
diff --git a/app/.idea/encodings.xml b/app/.idea/encodings.xml
diff --git a/app/.idea/jarRepositories.xml b/app/.idea/jarRepositories.xml
diff --git a/app/.idea/kubernetes-settings.xml b/app/.idea/kubernetes-settings.xml
diff --git a/app/.idea/misc.xml b/app/.idea/misc.xml
diff --git a/app/.idea/modules.xml b/app/.idea/modules.xml
diff --git a/app/.idea/vcs.xml b/app/.idea/vcs.xml
diff --git a/app/backend/.gitignore b/app/backend/.gitignore
@@ -0,0 +1 @@
+target/
diff --git a/app/backend/Dockerfile b/app/backend/Dockerfile
@@ -0,0 +1,7 @@
+FROM eclipse-temurin:17-jre
+
+RUN mkdir -p /opt/application
+COPY target/*-runner.jar /opt/application/backend.jar
+CMD [ "java", "-jar", "backend.jar" ]
+# CMD [ "tail", "-f", "/dev/null"]
+WORKDIR /opt/application
diff --git a/app/backend/build.sh b/app/backend/build.sh
@@ -0,0 +1,9 @@
+#!/usr/bin/env bash 
+
+set -e
+
+TAG=ghcr.io/htl-leo-itp-2325-4-5bhitm/partytiga-backend
+
+docker build --tag=$TAG --file=Dockerfile .
+
+docker push $TAG
diff --git a/app/backend/src/main/resources/application.properties b/app/backend/src/main/resources/application.properties
@@ -39,8 +39,8 @@ quarkus.keycloak.devservices.realm-path=quarkus-realm.json
 
 quarkus.keycloak.policy-enforcer.lazy-load-paths=false
 
-# quarkus.keycloak.policy-enforcer.paths.1.path=/api/events
-# quarkus.keycloak.policy-enforcer.paths.1.enforcement-mode=DISABLED
+quarkus.keycloak.policy-enforcer.paths.1.path=/api/events
+quarkus.keycloak.policy-enforcer.paths.1.enforcement-mode=DISABLED
 
 quarkus.keycloak.policy-enforcer.enable=true
 quarkus.keycloak.policy-enforcer.enforcement-mode=enforcing

diff --git a/app/frontend/build.sh b/app/frontend/build.sh
@@ -0,0 +1,9 @@
+#!/usr/bin/env bash 
+
+set -e
+
+TAG=ghcr.io/htl-leo-itp-2325-4-5bhitm/partytiga-frontend
+
+docker build --tag=$TAG --file=docker/Dockerfile .
+
+docker push $TAG
diff --git a/app/frontend/docker/Dockerfile b/app/frontend/docker/Dockerfile
@@ -0,0 +1,4 @@
+FROM nginx:stable
+
+COPY target/* /usr/share/nginx/html/
+COPY docker/default.conf /etc/nginx/conf.d/default.conf
diff --git a/app/frontend/docker/default.conf b/app/frontend/docker/default.conf
@@ -0,0 +1,13 @@
+server {
+    listen 80;
+    root /usr/share/nginx/html;
+    rewrite_log on;
+    error_log /dev/stdout debug;
+
+    location /api/ {
+        proxy_pass http://backend:8080;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header Host $host:$server_port;
+    }
+}
diff --git a/app/frontend/src/components/settings-component.ts b/app/frontend/src/components/settings-component.ts
@@ -1,4 +1,5 @@
 import { html,render } from "lit-html"
+import { login } from "../";
 
 export class settingsComponent extends HTMLElement {
 
@@ -16,6 +17,7 @@ export class settingsComponent extends HTMLElement {
     console.log("setting component loaded");
   }
   displayContent() {
+    login();
     return html`
       <h1>Anmeldedaten</h1>
       <p>Vorname</p>
@@ -26,4 +28,5 @@ export class settingsComponent extends HTMLElement {
   }
 }
 
-customElements.define("event-settings", settingsComponent)
+customElements.define("event-settings", settingsComponent)
+
diff --git a/app/frontend/src/index.ts b/app/frontend/src/index.ts
@@ -16,7 +16,7 @@ import Keycloak from 'keycloak-js';
    .then(json => console.log(JSON.stringify(json)));
 */
 
-async function login() {
+export async function login() {
     console.log("ich bin im index.ts")
     const keycloak = new Keycloak({
         url: 'https://partytiga.hopto.org',
@@ -41,7 +41,7 @@ async function login() {
             console.log('keycloaktoken = ' + keycloak.token)
             localStorage.token=keycloak.token
         }
-        await loadEvents()
+
     } catch (error) {
         console.error('Failed to initialize adapter:', error);
     }
@@ -50,7 +50,7 @@ async function login() {
 document.getElementById('profile').addEventListener("click", login)
 
 async function start() {
-    await login()
+    await loadEvents()
 }
 start()
 

diff --git a/app/k8s/backend.yaml b/app/k8s/backend.yaml
@@ -0,0 +1,56 @@
+# Quarkus Application Server
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: appsrv
+
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: appsrv
+  template:
+    metadata:
+      labels:
+        app: appsrv
+    spec:
+      containers:
+        - name: appsrv
+          image: $BACKEND_IMAGE_NAME
+          # remove this when stable. Currently we do not take care of version numbers
+          imagePullPolicy: Always
+          ports:
+            - containerPort: 8080
+
+          # startupProbe:
+          #   httpGet:
+          #     path: /api/q/health
+          #     port: 8080
+          #   timeoutSeconds: 5
+          #   initialDelaySeconds: 15
+          # readinessProbe:
+          #   tcpSocket:
+          #     port: 8080
+          #   initialDelaySeconds: 5
+          #   periodSeconds: 10
+          # livenessProbe:
+          #   httpGet:
+          #     path: /api/q/health
+          #     port: 8080
+          #   timeoutSeconds: 5
+          #   initialDelaySeconds: 60
+          #   periodSeconds: 120                
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: appsrv
+
+spec:
+  ports:
+    - port: 8080
+      targetPort: 8080
+      protocol: TCP
+  selector:
+    app: appsrv
+
diff --git a/app/k8s/keycloak/.gitignore b/app/k8s/keycloak/.gitignore
@@ -0,0 +1 @@
+keycloak-credentials.properties
diff --git a/app/k8s/keycloak/Dockerfile b/app/k8s/keycloak/Dockerfile
@@ -0,0 +1,25 @@
+FROM quay.io/keycloak/keycloak:latest as builder
+
+# Enable health and metrics support
+ENV KC_HEALTH_ENABLED=true
+ENV KC_METRICS_ENABLED=true
+
+# Configure a database vendor
+ENV KC_DB=postgres
+
+WORKDIR /opt/keycloak
+
+# for demonstration purposes only, please make sure to use proper certificates in production instead
+RUN keytool -genkeypair -storepass password -storetype PKCS12 -keyalg RSA -keysize 2048 -dname "CN=server" -alias server -ext "SAN:c=DNS:localhost,IP:127.0.0.1" -keystore conf/server.keystore
+RUN /opt/keycloak/bin/kc.sh build --health-enabled=true --metrics-enabled=true
+
+FROM quay.io/keycloak/keycloak:latest
+COPY --from=builder /opt/keycloak/ /opt/keycloak/
+# COPY ./import/ /opt/keycloak/data/import/
+# change these values to point to a running postgres instance
+ENV KC_DB=postgres
+ENV KC_DB_URL=jdbc:postgresql://keycloak:5432/keycloak
+ENV KC_DB_USERNAME=keycloak
+ENV KC_DB_PASSWORD=keycloak
+ENV KC_HOSTNAME=localhost
+ENTRYPOINT ["/opt/keycloak/bin/kc.sh"]
diff --git a/app/k8s/keycloak/build.sh b/app/k8s/keycloak/build.sh
@@ -0,0 +1,11 @@
+#!/usr/bin/env bash 
+
+set -e
+
+TAG=ghcr.io/htl-leo-itp-2325-4-5bhitm/partytiga-keycloak
+
+docker build --tag=$TAG .
+
+docker push $TAG
+
+#docker run --name keycloak --rm keycloak start-dev
diff --git a/app/k8s/keycloak/create-secret.sh b/app/k8s/keycloak/create-secret.sh
@@ -0,0 +1,6 @@
+#!/usr/bin/env bash
+
+
+kubectl delete secret keycloak-credentials || echo "secrets do not yet exit"
+kubectl create secret generic keycloak-credentials --from-env-file=keycloak-credentials.properties
+