baschno/buun-stack
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(keycloak): set client session idle/max

Browse Source
This commit is contained in:
Masaki Yatsu
2025-09-03 11:19:27 +09:00
parent 22e73d9a3d
commit 817b0316d9
2 changed files with 23 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
keycloak/justfile
View File

@@ -155,7 +155,7 @@ delete-realm realm:
dotenvx run -q -f ../.env.local -- tsx ./scripts/delete-realm.ts dotenvx run -q -f ../.env.local -- tsx ./scripts/delete-realm.ts
# Create Keycloak client # Create Keycloak client
create-client realm client_id redirect_url client_secret='': create-client realm client_id redirect_url client_secret='' session_idle='' session_max='':
#!/bin/bash #!/bin/bash
set -euo pipefail set -euo pipefail
export KEYCLOAK_ADMIN_USER=$(just admin-username) export KEYCLOAK_ADMIN_USER=$(just admin-username)
@@ -164,6 +164,8 @@ create-client realm client_id redirect_url client_secret='':
export KEYCLOAK_CLIENT_ID={{ client_id }} export KEYCLOAK_CLIENT_ID={{ client_id }}
export KEYCLOAK_CLIENT_SECRET={{ client_secret }} export KEYCLOAK_CLIENT_SECRET={{ client_secret }}
export KEYCLOAK_REDIRECT_URL={{ redirect_url }} export KEYCLOAK_REDIRECT_URL={{ redirect_url }}
export KEYCLOAK_CLIENT_SESSION_IDLE={{ session_idle }}
export KEYCLOAK_CLIENT_SESSION_MAX={{ session_max }}
dotenvx run -q -f ../.env.local -- tsx ./scripts/create-client.ts dotenvx run -q -f ../.env.local -- tsx ./scripts/create-client.ts
# Delete Keycloak client # Delete Keycloak client

22
keycloak/scripts/create-client.ts
View File

@@ -24,6 +24,9 @@ const main = async () => {
const redirectUris = redirectUrl.split(',').map(url => url.trim()); const redirectUris = redirectUrl.split(',').map(url => url.trim());
const sessionIdle = process.env.KEYCLOAK_CLIENT_SESSION_IDLE;
const sessionMax = process.env.KEYCLOAK_CLIENT_SESSION_MAX;
const kcAdminClient = new KcAdminClient({ const kcAdminClient = new KcAdminClient({
baseUrl: `https://${keycloakHost}`, baseUrl: `https://${keycloakHost}`,
realmName: "master", realmName: "master",
@@ -46,13 +49,28 @@ const main = async () => {
return; return;
} }
const createdClient = await kcAdminClient.clients.create({ const clientConfig: any = {
clientId: clientId, clientId: clientId,
secret: clientSecret, secret: clientSecret,
enabled: true, enabled: true,
redirectUris: redirectUris, redirectUris: redirectUris,
publicClient: clientSecret && clientSecret !== '' ? false : true, publicClient: clientSecret && clientSecret !== '' ? false : true,
}); };
// Add session timeout settings if provided
if (sessionIdle && sessionIdle !== '') {
clientConfig.attributes = clientConfig.attributes || {};
clientConfig.attributes['client.session.idle.timeout'] = sessionIdle;
console.log(`Setting Client Session Idle Timeout: ${sessionIdle}`);
}
if (sessionMax && sessionMax !== '') {
clientConfig.attributes = clientConfig.attributes || {};
clientConfig.attributes['client.session.max.lifespan'] = sessionMax;
console.log(`Setting Client Session Max Lifespan: ${sessionMax}`);
}
const createdClient = await kcAdminClient.clients.create(clientConfig);
console.log(`Client created successfully with ID: ${createdClient.id}`); console.log(`Client created successfully with ID: ${createdClient.id}`);
} catch (error) { } catch (error) {
console.error("An error occurred:", error); console.error("An error occurred:", error);