Skip to content

project-ncl/trustbox

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

250 Commits
.github
.github
 
 
.mvn/wrapper
.mvn/wrapper
 
 
src
src
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
eclipse-codeStyle.xml
eclipse-codeStyle.xml
 
 
mvnw
mvnw
 
 
mvnw.cmd
mvnw.cmd
 
 
pom.xml
pom.xml
 
 

Repository files navigation

trustbox

This project is just a simple proxy server to a Keycloak server, nothing more. It is used as a jump box since pnc-build-agent runs in a hermetic environment which firewalls outgoing connections.

Our Keycloak server's DNS may return multiple IP addresses that can change at any moment. This doesn't work well with our firewall which expects a specific IP address to allow-list instead.

The solution we thought of is to create this jumpbox, with a static IP address that will never change, as a proxy to the Keycloak server.

The client id and client secret are not logged, or stored in a temporary or persistent store for security reasons.

Running the application in dev mode

You can run your application in dev mode that enables live coding using:

./mvnw compile quarkus:dev

Packaging and running the application

The application can be packaged using:

./mvnw package

The application, packaged as an über-jar, is now runnable using java -jar target/*-runner.jar.

About

A proxy to get OIDC access token on behalf on another service

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

3 tags

Packages

 
 
 

Contributors

Languages