:rocket: Try it for free in the new Phase Two keycloak managed service. See the announcement and demo video for more information.
Themes and theme utilities meant for simple theme customization without deploying a packaged theme.
ThemeProvider
that loads named Freemarker templates and messages from Realm attributes. Currently only for email.EmailTemplateProvider
that allows the use of mustache.js templates.This extension is used in the Phase Two cloud offering, and is released here as part of its commitment to making its core extensions open source. Please consult the license for information regarding use.
The easiest way to get started is our Docker image. Documentation and examples for using it are in the phasetwo-containers repo. The most recent version of this extension is included.
If you wish to build this yourself, you can do so with a few simple steps:
mvn clean install
target/
to your providers
directory (for Quarkus) or standalone/deployments
directory (for legacy) and rebuild/restart keycloak.After #1, you can also run docker-compose up
if you want to take a quick look.
The login theme is named attributes
. It assumes you will store the values as Realm attributes with the following keys:
_providerConfig.assets.login.css
: CSS you want to be loaded after the standard login.css_providerConfig.assets.login.backgroundColor
: override for --pf-v5-global--primary-color--100
._providerConfig.assets.login.primaryColor
: override for --pf-v5-global--secondary-color--100
._providerConfig.assets.login.secondaryColor
: override for --pf-v5-global--BackgroundColor--100
._providerConfig.assets.logo.url
: URL of logo file that will be served as the div.kc-logo-text.background-image
. Constrained to 150x150._providerConfig.assets.favicon.url
: URL of the faviconThere are 3 examples of CSS themes that can be loaded using the property above. They are in the examples/
directory. You can either set these as the _providerConfig.assets.login.css
Realm attribute, or, if you are using the Phase Two admin console theme, set them in the Styles -> Login section.
The custom ThemeProvider
installs one email theme called attributes
which allows you to override any .ftl template (from base) using Realm attributes with the following key format:
_providerConfig.theme.email.templates.<some-template.ftl>
Messages can be overridden with the following key format:
_providerConfig.theme.email.messages.<message-key>
You can also select a different base theme. To use that, set the following variable with the theme you want to override:
_providerConfig.theme.email.parent
Note that the current base theme is mustache
which requires the use of the custom EmailTemplateProvider
below. If you switch it back to base
by setting the realm attribute, you can override the .ftl templates.
In order to run the email theme, you must turn theme caching off. This is because themes are cached in Keycloak with a common KeycloakSession
, which will contain the incorrect Realm in the context for lookup of attributes. In practice, we have not noticed a significant performance impact of this. This requires setting the following command line flag for start
or start-dev
:
--spi-theme-cache-themes=false
The implementation of EmailTemplateProvider
that allows the use of mustache.js templates will need to override the default implementation in Keycloak. This has to be specified as an SPI override at startup. If you want to use it, you will need to set the following command line flags for start
or start-dev
:
--spi-email-template-provider=freemarker-plus-mustache --spi-email-template-freemarker-plus-mustache-enabled=true
linkExpirationFormatter(linkExpiration)
by using the library's lambda functionality, and using the mustache-y syntax {{#linkExpirationFormatter}}{{linkExpiration}}{{/linkExpirationFormatter}}
, but there isn't complete coverage yet.All documentation, source code and other files in this repository are Copyright 2024 Phase Two, Inc.