cmaksymenko
commented
9 months ago Here is a direct tutorial, let's try this: https://www.olavgg.com/show/how-to-configure-pgadmin-4-with-oauth2-and-keycloak
Closed cmaksymenko closed 8 months ago
cmaksymenko
commented
9 months ago Here is a direct tutorial, let's try this: https://www.olavgg.com/show/how-to-configure-pgadmin-4-with-oauth2-and-keycloak
Right now pgAdmin relies on username/password for the admin user. This is managed seperately as a secret file.
Since we introduce Keycloak as IAM solution, and will of course add later an Application Admin User for Avalanche CMS, there is no reason why we should extend this to the remaining applications for infra / management as well...
pgAdmin can use Oauth2: https://www.pgadmin.org/docs/pgadmin4/development/oauth2.html also LDAP: https://www.pgadmin.org/docs/pgadmin4/development/login.html Kerberos: https://www.pgadmin.org/docs/pgadmin4/development/kerberos.html and others...
it should be possible.
At the moment there is no boostrapping for the realms/users in keycloak - so the solution could be OKish if the guide is extended with instructions how to add a user first... but in the long run the admin user should be automated of course.