Add healthcheck in Keycloak Docker Swarm service

Question

Add healthcheck in Keycloak Docker Swarm service

8.9k views Asked by rokpoto.com At 14 September 2024 at 10:07

What's the best way to test the health of Keycloak configured as cluster deployed as docker swarm service?

I tried the below healthcheck for testing availability in Keycloak service descriptor:

   healthcheck:
      test: ["CMD-SHELL", "curl http://localhost:8080/auth/realms/[realm_name]"]
      interval: 30s
      timeout: 10s
      retries: 10
      start_period: 1m

Are there more things to check for? Couldn't find the documentation for this.

Original Q&A

There are 3 answers

**dev_hero** · Answer 1 · 2022-12-20 16:41:48

I prefer to listen directly the 'master' realm. Morover most recent Keycloak versions uses a different path (omitting 'auth'):

healthcheck:
  test: ["CMD", "curl", "-f", "http://0.0.0.0:8080/realms/master"]
  start_period: 10s
  interval: 30s
  retries: 3
  timeout: 5s

**dingo** · Answer 2 · 2023-02-02 08:42:22

One can also use the /health endpoint on the KeyCloak container as follows:

"healthCheck": {
  "retries": 3,
  "command": [
    "CMD-SHELL",
    "curl -f http://localhost:8080/health || exit 1"
   ],
   "timeout": 5,
   "interval": 60,
   "startPeriod": 300
 }

**bruegth** · Answer 3 · 2023-03-07 10:15:35

With Keycloak 21 new micro base image is used, so 'curl' no longer included in Image so healthcheck will not work anymore.

If Keycloak configured without HTTPS my workaround is this:

#!/bin/bash
exec 3<>/dev/tcp/localhost/8080

echo -e "GET /auth/health/ready HTTP/1.1\nhost: localhost:8080\n" >&3

timeout --preserve-status 1 cat <&3 | grep -m 1 status | grep -m 1 UP
ERROR=$?

exec 3<&-
exec 3>&-

exit $ERROR

TechQA.

Add healthcheck in Keycloak Docker Swarm service

There are 3 answers

Related Questions in DOCKER

Related Questions in KEYCLOAK

Related Questions in DOCKER-SWARM

Related Questions in REDHAT-SSO

Popular Questions

Popular Tags

Trending Questions