Issue with deploying Keycloak war

45 views
Skip to first unread message

Shameer

unread,
Dec 26, 2019, 4:56:55 AM12/26/19
to Aerogear
Hi,  

I could not able to deploy unifiedpush-server-wildfly-keycloak.war to WildFly Server. The deployment always failed with the below error log.

"{\"WFLYCTL0080: Failed services\" => {\"jboss.deployment.unit.\\\"unifiedpush-server-wildfly-keycloak.war\\\".POST_MODULE\" => \"WFLYSRV0153: Failed to process phase POST_MODULE of deployment \\\"unifiedpush-server-wildfly-keycloak.war\\\"
    Caused by: org.jboss.msc.service.DuplicateServiceException: Service jboss.naming.context.java.module.ag-push.ag-push.ValidatorFactory is already registered\"}}"

System details (standalone version) as below:
  • WildFly version : 18.0.1.Final
  • Aerogear ups filename w version:  aerogear-unifiedpush-server-2.2.1.Final
Steps taken before encountered the issue:
  1. I have created the required DB & table as per steps provided in https://aerogear.org/docs/unifiedpush/ups_userguide/index/#server-installation
  2. I copied the two war files unifiedpush-server-wildfly.war and unifiedpush-server-wildfly-keycloak.war to wildFly\standalone\deployments folder.
  3. Only unifiedpush-server-wildfly.war was successful deployed. I was able to access the application.
  4. The unifiedpush-server-wildfly-keycloak.war was failed to deploy with the above error.

My Question is : 
  1. Is there any steps which I am missing here ?  
  2. Is there any order/sequence in deploying the .war files.
I would greatly appreciate your advise.

Thanks!

Shameer

unread,
Apr 15, 2020, 11:53:19 PM4/15/20
to Aerogear
I proceed with the previous installation without the keycloak. It means only the admin UI is not protected by any password, other apis continue to work. I am planning to setup a KeyCloak server as per mentioned in KeyCloak website but before that would like to check, does UnifiedPush use embedded KeyCloak Server ? or Do I need to setup standalone KeyCloak server ?

Thanks in advance.

Massimiliano Ziccardi

unread,
Apr 16, 2020, 8:26:06 AM4/16/20
to Shameer, Aerogear
In the past the unifiedpush server used to have an embedded keycloak instance, but it has been decoupled.

For instructions about running UPS with Keycloak, please look here: https://aerogear.github.io/aerogear-unifiedpush-server/docs/running#using-keycloak-for-authentication

--
You received this message because you are subscribed to the Google Groups "Aerogear" group.
To unsubscribe from this group and stop receiving emails from it, send an email to aerogear+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/aerogear/77850cb5-b220-4bfd-8c0a-5ee6f8b32c5f%40googlegroups.com.

mail hook

unread,
Apr 16, 2020, 9:06:08 AM4/16/20
to Massimiliano Ziccardi, Aerogear
Thanks, I'll check it out.

Shameer

unread,
Apr 21, 2020, 1:43:49 AM4/21/20
to Aerogear
I feel keycloak is kind of bit heavy for my design setup. Also the UPS admin is being used by operation very rarely. I understand, all the rest apis are protected by http basic authentication. I just wonder, is there any simple way to protect UPS admin UI other than Keycloak.

Summers Pittman ℝ

unread,
Apr 21, 2020, 10:38:02 AM4/21/20
to Shameer, Aerogear
Keycloak is the simple way.  You start your container and pass it two environment variables "KEYCLOAK_SERVICE_HOST" and "KEYCLOAK_SERVICE_PORT".  We provide a sample keycloak realm that you can use here : https://github.com/aerogear/aerogear-unifiedpush-server/blob/master/docker-compose/keycloak-realm/ups-realm-sample.json

Anything else and you're setting up http proxies to do per endpoint security with a separate service or you are doing weird things with http routing. I suppose you can also edit the standalone.xml and web.xml files in the source code and roll your own images to hardcode access at the wildfly layer. If you have the skills to do these things then "yes you can secure UPS without keycloak", but I strongly recommend against it.  



Summers Pittman
>>Phone:404 941 4698
>>Java is my crack.



On Tue, Apr 21, 2020 at 1:43 AM Shameer <mailh...@gmail.com> wrote:
I feel keycloak is kind of bit heavy for my design setup. Also the UPS admin is being used by operation very rarely. I understand, all the rest apis are protected by http basic authentication. I just wonder, is there any simple way to protect UPS admin UI other than Keycloak.

--
You received this message because you are subscribed to the Google Groups "Aerogear" group.
To unsubscribe from this group and stop receiving emails from it, send an email to aerogear+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/aerogear/766efb10-fa0c-4ac8-a33a-e15fed417313%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages