Note: this demonstrates issues creating session on keycloak cluster
Related discussions:
- https://issues.jboss.org/browse/KEYCLOAK-9855
- http://lists.jboss.org/pipermail/keycloak-user/2019-March/017511.html
# just start
docker-compose -f docker-compose.yml -f docker-compose.ports.yml up
# restart and rebuild
docker-compose down && docker-compose -f docker-compose.yml -f docker-compose.ports.yml up --buildopen http://localhost:8000/auth/realms/example/account
# Username `user`
# Password `password`
# => fails with the following error on the UI:
# 1st try (or cleared cookies) => "An error occurred, please login again through your application."
# 2nd try (with existing cookies) => "You are already logged in."open http://localhost:8081/auth/realms/example/account
# Username `user`
# Password `password`
# => works, the "Edit Account" view is shown[...]
keycloak1_1 | 15:12:34,152 INFO [org.infinispan.CLUSTER] (remote-thread--p8-t5) [Context=work] ISPN100010: Finished rebalance with members [keycloak1, keycloak2], topology id 5
keycloak1_1 | 15:12:34,152 INFO [org.infinispan.CLUSTER] (remote-thread--p8-t1) [Context=clientSessions] ISPN100010: Finished rebalance with members [keycloak1, keycloak2], topology id 5
keycloak1_1 | 15:12:34,164 INFO [org.infinispan.CLUSTER] (remote-thread--p8-t7) [Context=authenticationSessions] ISPN100010: Finished rebalance with members [keycloak1, keycloak2], topology id 5
[...]$ mysql --host 127.0.0.1 --user root --password=root --database keycloak --execute "select * from JGROUPSPING;"
mysql: [Warning] Using a password on the command line interface can be insecure.
+--------------------------------------+-----------+---------------------+--------------+------------------------------------------+
| own_addr | bind_addr | created | cluster_name | ping_data |
+--------------------------------------+-----------+---------------------+--------------+------------------------------------------+
| 6d69d5f7-4c84-18cb-6d64-dd2ddb2b3c99 | keycloak1 | 2019-03-21 15:12:31 | ejb | md�-�+<�mi��L�� keycloak1� ��� |
| f976f2e6-c4f5-ada4-796f-99f1c3b97193 | keycloak1 | 2019-03-21 15:12:31 | ejb | yo��ùq��v���� keycloak2� ��� |
+--------------------------------------+-----------+---------------------+--------------+------------------------------------------+$ curl http://localhost:8081/auth/realms/master/health/check
{
"details": {
"infinispan": {
"numberOfNodes": 2,
"state": "UP",
"healthStatus": "HEALTHY",
"nodeNames": [
"keycloak1",
"keycloak2"
],
"cacheDetails": [
{
"cacheName": "realms",
"healthStatus": "HEALTHY"
},
{
"cacheName": "authenticationSessions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "sessions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "authorizationRevisions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "work",
"healthStatus": "HEALTHY"
},
{
"cacheName": "keys",
"healthStatus": "HEALTHY"
},
{
"cacheName": "clientSessions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "users",
"healthStatus": "HEALTHY"
},
{
"cacheName": "loginFailures",
"healthStatus": "HEALTHY"
},
{
"cacheName": "offlineClientSessions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "authorization",
"healthStatus": "HEALTHY"
},
{
"cacheName": "realmRevisions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "offlineSessions",
"healthStatus": "HEALTHY"
},
{
"cacheName": "actionTokens",
"healthStatus": "HEALTHY"
},
{
"cacheName": "userRevisions",
"healthStatus": "HEALTHY"
}
],
"clusterName": "ejb"
},
"database": {
"connection": "established",
"state": "UP"
},
"filesystem": {
"freebytes": 13042221056,
"state": "UP"
}
},
"name": "keycloak",
"state": "UP"
}