From 17846f197245016fe026d5713fe35cb97a948002 Mon Sep 17 00:00:00 2001
From: burnettk <burnettk@users.noreply.github.com>
Date: Fri, 1 Jul 2022 10:30:01 -0400
Subject: [PATCH] use 5005 for keycloak and document how to start this thing

---
 bin/finance-realm.json         |  2 +-
 bin/keycloak_test_secrets.json |  2 +-
 bin/keycloak_test_server.py    | 10 ++++++++--
 bin/start_keycloak             |  2 +-
 docker-compose.yml             |  1 +
 5 files changed, 12 insertions(+), 5 deletions(-)

diff --git a/bin/finance-realm.json b/bin/finance-realm.json
index 463f18fc..b0705c5b 100644
--- a/bin/finance-realm.json
+++ b/bin/finance-realm.json
@@ -625,7 +625,7 @@
       "alwaysDisplayInConsole": false,
       "clientAuthenticatorType": "client-secret",
       "secret": "OAh6rkjXIiPJDtPOz4459i3VtdlxGcce",
-      "redirectUris": ["http://localhost:5000/*"],
+      "redirectUris": ["http://localhost:5005/*"],
       "webOrigins": ["https://www.keycloak.org"],
       "notBefore": 0,
       "bearerOnly": false,
diff --git a/bin/keycloak_test_secrets.json b/bin/keycloak_test_secrets.json
index f7e06ae3..12dc3faa 100644
--- a/bin/keycloak_test_secrets.json
+++ b/bin/keycloak_test_secrets.json
@@ -4,7 +4,7 @@
     "auth_uri": "http://localhost:8080/realms/finance/protocol/openid-connect/auth",
     "client_id": "myclient",
     "client_secret": "OAh6rkjXIiPJDtPOz4459i3VtdlxGcce",
-    "redirect_uris": ["http://localhost:5000/*"],
+    "redirect_uris": ["http://localhost:5005/*"],
     "userinfo_uri": "http://localhost:8080/realms/finance/protocol/openid-connect/userinfo",
     "token_uri": "http://localhost:8080/realms/finance/protocol/openid-connect/token",
     "token_introspection_uri": "http://localhost:8080/realms/finance/protocol/openid-connect/token/introspect"
diff --git a/bin/keycloak_test_server.py b/bin/keycloak_test_server.py
index 71038671..af1d113f 100644
--- a/bin/keycloak_test_server.py
+++ b/bin/keycloak_test_server.py
@@ -1,5 +1,11 @@
 # type: ignore
 """keycloak_test_server."""
+
+# ./bin/start_keycloak # starts keycloak on 8080
+# pip install flask_oidc
+# pip install itsdangerous==2.0.1
+# python ./bin/keycloak_test_server.py # starts flask on 5005
+
 import json
 import logging
 
@@ -74,7 +80,7 @@ def hello_me():
     return """{} your email is {} and your user_id is {}!
                <ul>
                  <li><a href="/">Home</a></li>
-                 <li><a href="//localhost:8080/auth/realms/finance/account?referrer=flask-app&referrer_uri=http://localhost:5000/private&">Account</a></li>
+                 <li><a href="//localhost:8080/auth/realms/finance/account?referrer=flask-app&referrer_uri=http://localhost:5005/private&">Account</a></li>
                 </ul>""".format(
         greeting,
         email,
@@ -97,4 +103,4 @@ def logout():
 
 
 if __name__ == "__main__":
-    app.run()
+    app.run(port=5005)
diff --git a/bin/start_keycloak b/bin/start_keycloak
index c39f408d..5d5ae82b 100755
--- a/bin/start_keycloak
+++ b/bin/start_keycloak
@@ -7,7 +7,7 @@ function error_handler() {
 trap 'error_handler ${LINENO} $?' ERR
 set -o errtrace -o errexit -o nounset -o pipefail
 
-docker run -p 8080:8080 -d --rm --name keycloak -e KEYCLOAK_LOGLEVEL=ALL -e ROOT_LOGLEVEL=ALL -e KEYCLOAK_ADMIN=admin -e KEYCLOAK_ADMIN_PASSWORD=admin quay.io/keycloak/keycloak:18.0.0 start-dev
+docker run -p 8080:8080 --rm --name keycloak -e KEYCLOAK_LOGLEVEL=ALL -e ROOT_LOGLEVEL=ALL -e KEYCLOAK_ADMIN=admin -e KEYCLOAK_ADMIN_PASSWORD=admin quay.io/keycloak/keycloak:18.0.0 start-dev
 
 # to export:
 # /opt/keycloak/bin/kc.sh export --dir /tmp/hey --users realm_file
diff --git a/docker-compose.yml b/docker-compose.yml
index c640e7e9..78770997 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -3,6 +3,7 @@ services:
   db:
     container_name: db
     image: mysql:8.0.29
+    platform: linux/amd64
     cap_add:
       - SYS_NICE
     restart: "${SPIFFWORKFLOW_BACKEND_DATABASE_DOCKER_RESTART_POLICY:-no}"