svg

2024-03-01 15:49:55 +01:00 · 2024-03-01 15:49:55 +01:00 · 047723fa92
parent a70ea666c8
commit 047723fa92
5 changed files with 16 additions and 9 deletions
--- a/docker/env/.env
+++ b/docker/env/.env
@ -1,11 +1,16 @@
 # == GLOBAL ===============================================================================================================================

+# ATTENTION
+# si vous souhaiter faire tourner envole sur localhost vous devez ajouter dans votre host = 127.0.0.0 envole.local
+# si vous changer le web_url penser à modifier envole.local par votre web_url dans volume/keycloak/envole/realm-export.json
+# sinon il vous faudra vous connecter à keycloak pour changer l'url du client envole 
+
 # RELEASE SYSTEM = linux ou eole si eole le réseau du compose sera supprimé et regénéré à chaque UP
 RELEASE_SYSTEM=linux

 # GLOBAL
 APP_ENV=PROD
-WEB_URL=localhost
+WEB_URL=envole.local
 PROTOCOLE=http

 # ADMIN USER
@ -63,7 +68,6 @@ OPENLDAPSYNCHROGROUP=0
 OPENLDAPREQGROUP=

 # CAS
-# attention si localhost = ajouter keycloak dans votre propre host : le service web doit valider son ticket via le nom du service et votre navigateur doit assi le voir
 KEYCLOAK_SERVICE_NAME=keycloak
 CAS_ACTIVATE=1
 CAS_LOCAL=1
--- a/docker/env/.env.zapp.keycloak
+++ b/docker/env/.env.zapp.keycloak
@ -12,4 +12,4 @@ DB_PASSWORD=${MARIADB_PASSWORD}
 KC_HTTPS_CERTIFICATE_FILE=/envole/server.crt.pem
 KC_HTTPS_CERTIFICATE_KEY_FILE=/envole/server.key.pem
 KEYCLOAK_IMPORT=/envole/realm-export.json
-
+PROXY_ADDRESS_FORWARDING= 'true'
--- a/docker/volume/keycloak/envole/realm-export.json
+++ b/docker/volume/keycloak/envole/realm-export.json
@ -435,16 +435,16 @@
      "id": "133d3397-41e7-4ec1-aaf0-a0939da72f58",
      "clientId": "envole",
      "name": "envole",
-      "rootUrl": "https://eolebase.ac-test.fr",
-      "baseUrl": "https://eolebase.ac-test.fr",
+      "rootUrl": "https://envole.local",
+      "baseUrl": "https://envole.local",
      "surrogateAuthRequired": false,
      "enabled": true,
      "alwaysDisplayInConsole": false,
      "clientAuthenticatorType": "client-secret",
      "secret": "**********",
      "redirectUris": [
-        "http://eolebase.ac-test.fr*",
-        "https://eolebase.ac-test.fr*"
+        "http://envole.local*",
+        "https://envole.local*"
      ],
      "webOrigins": [],
      "notBefore": 0,
--- a/tmpl/envole-apache.conf
+++ b/tmpl/envole-apache.conf
@ -1,3 +1,6 @@
+ProxyPass /auth http://0.0.0.0:8080/auth retry=0 keepalive=On
+ProxyPassReverse /auth http://0.0.0.0:8080/auth retry=0
+
 ProxyPass /ninegate http://0.0.0.0:9000/ninegate retry=0 keepalive=On
 ProxyPassReverse /ninegate http://0.0.0.0:9000/ninegate retry=0
 ProxyPass /wssninegate ws://0.0.0.0:9000/wssninegate retry=0 keepalive=On
--- a/tmpl/envole.env
+++ b/tmpl/envole.env
@ -50,9 +50,9 @@ CAS_ACTIVATE=0
 %end if
 CAS_LOCAL=%%getBool(%%getVar("cas_local", "non"))
 CAS_HOST=%%getVar("cas_host", %%getVar("web_url"))
-CAS_PORT=%%getVar("cas_port", "8443")
+CAS_PORT=%%getVar("cas_port", "443")
 CAS_PATH=%%getVar("cas_path", "/auth/realms/envole/protocol/cas")
-CAS_URL=https://%%getVar("cas_host", %%getVar("web_url")):%%getVar("cas_port", "8443")
+CAS_URL=https://%%getVar("cas_host", %%getVar("web_url")):%%getVar("cas_port", "443")
 CAS_PASSWORD=%%getVar("keycload_userpassword", "")

 # NINEGATE