Learn how to configure Keycloak OIDC for Infisical SSO.
Create an OIDC client application in Keycloak
https://app.infisical.com
.https://app.infisical.com
.https://app.infisical.com/api/v1/sso/oidc/callback
.https://app.infisical.com
.Retrieve Identity Provider (IdP) Information from Keycloak
https://keycloak-mysite.com/realms/myrealm/.well-known/openid-configuration
.
Finish configuring OIDC in Infisical
Enable OIDC SSO in Infisical
Enforce OIDC SSO in Infisical
/login/admin
path e.g. https://app.infisical.com/login/admin.AUTH_SECRET
and SITE_URL
environment variable for it to
work:AUTH_SECRET
: A secret key used for signing and verifying JWT. This
can be a random 32-byte base64 string generated with openssl rand -base64 32
.SITE_URL
: The absolute URL of your self-hosted instance of Infisical including the protocol (e.g. https://app.infisical.com)