I would like to add a password-blacklist to Keycloak 16 running in a docker container. I have tried to add the blacklist to /opt/jboss/keycloak/password-blacklists/
and /opt/jboss/keycloak/standalone/data/password-blacklists/
but in both places the file could not be found.
The documentations says the following: "Blacklist files resolve against ${jboss.server.data.dir}/password-blacklists/
by default."
So what is path is the default ${jboss.server.data.dir}
using the docker container?
CodePudding user response:
https://docs.jboss.org/author/display/WFLY8/Command line parameters.html
jboss.server.data.dir = jboss.server.base.dir/data
->
jboss.server.base.dir = jboss.home.dir/standalone
->
jboss.home.dir = Set by standalone.sh to $JBOSS_HOME
and $JBOSS_HOME
is:
docker run --rm -ti --entrypoint bash quay.io/keycloak/keycloak:16.1.0 -c 'echo $JBOSS_HOME'
/opt/jboss/keycloak
So jboss.server.data.dir
= /opt/jboss/keycloak/standalone/data/
Keep in mind that Keycloak is running under jboss
user (uid=1000), so set file permissions accordingly.