Keycloak cluster deployement
123 views
Skip to first unread message
Nizar Montassar
Feb 7, 2023, 11:15:46 AM2/7/23
to Keycloak User
Hello All;
I m new with keycloak, i will use last version 20.0.3 (Quarkus distribution) and I have couple of questions regarding the deployement.
My Keycloak cluster (three nodes) will be reparted on three datacenter, each datacenter have it's own network (no extended vlans every thinks is routed) and it's too complicated to implement the multicast configuration. So i will just need to create a database cluster (mariadb galera) and don't configure distributed cache (infinspane as i have understand it need multicast configuration) . My questions:
1- It's good enough to replicate only databases and no need for distributed cache, if it's the case How to force local cache for every node in cluster deployement ?
2- The best way to configure keycloak as systemd service ( to avoid launch keycloak with ks scripts).
Thanks in advance for your Help.
Best Regards
I m new with keycloak, i will use last version 20.0.3 (Quarkus distribution) and I have couple of questions regarding the deployement.
My Keycloak cluster (three nodes) will be reparted on three datacenter, each datacenter have it's own network (no extended vlans every thinks is routed) and it's too complicated to implement the multicast configuration. So i will just need to create a database cluster (mariadb galera) and don't configure distributed cache (infinspane as i have understand it need multicast configuration) . My questions:
1- It's good enough to replicate only databases and no need for distributed cache, if it's the case How to force local cache for every node in cluster deployement ?
2- The best way to configure keycloak as systemd service ( to avoid launch keycloak with ks scripts).
Thanks in advance for your Help.
Best Regards
sebastian.schuster
Feb 7, 2023, 11:33:31 AM2/7/23
to Keycloak User
This won't work. At least the legacy store needs distributed caches for things like sessions. You can create multi-datacenter setup using an external Infinispan cluster, but you would still have to setup distributed caches (just in the external Infinispan).
Nizar Montassar
Feb 7, 2023, 11:54:24 AM2/7/23
to sebastian.schuster, Keycloak User
It will not remain the same with external cache with inifinispan I will need a multicast configuration?
--
You received this message because you are subscribed to a topic in the Google Groups "Keycloak User" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/keycloak-user/KtJKqOuvk5o/unsubscribe.
To unsubscribe from this group and all its topics, send an email to keycloak-use...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/keycloak-user/4f18c503-87df-4514-97e8-d331f62e1b42n%40googlegroups.com.
sebastian.schuster
Feb 7, 2023, 12:15:00 PM2/7/23
to Keycloak User
You don't need multicast. It is just the default discovery protocol for nodes, it is not the protocol used for cluster communication once it has been built. You can use TCP_PING with statically defined IP addresses for discovery instead.
Reply all
Reply to author
Forward
0 new messages