🐳 Keycloak + MariaDB + JS Client (Podman Setup)

This project runs a complete authentication system using:

• Keycloak for OpenID Connect (OIDC) identity management
• MariaDB as Keycloak's persistent storage
• A JavaScript frontend client using keycloak-js for login/logout
• Podman Compose for container orchestration

---

📁 Project Structure

project-root/
├── podman-compose.yaml
├── keycloak/
│   └── realm-export.json
├── js-client/
│   ├── Dockerfile
│   └── index.html

---

🚀 Getting Started

🔧 Prerequisites

• Podman
• podman-compose
• Optional: Python 3.11+ virtual environment for stability

▶️ Start the Stack

podman-compose down -v               # Clean up any existing volumes
podman-compose up --build -d         # Start all services

---

🌐 Services

Service	URL	Description
Keycloak	http://localhost:8080	Admin Console
JS Client	http://localhost:3000	Static HTML + OIDC Login

---

🔐 Default Credentials

• Keycloak Admin: admin / admin
• Test User: testuser / password (inside realm-export.json)

---

🧠 How Realm Import Works

Keycloak imports the realm once, only if the DB is empty.

If demo-realm doesn't appear:

podman-compose down -v      # Reset MariaDB volume
podman-compose up -d

For development, you can force import every time (not for prod):

command: start-dev --import-realm

---

💻 JS Client Features

Located in js-client/index.html, this frontend:

• Connects to Keycloak via keycloak-js
• Allows login/logout
• Shows access token

Customize the index.html to suit your app.

---

🛠️ Customization

• Edit keycloak/realm-export.json to change realms, users, roles, clients.
• Customize js-client/index.html for your frontend.
• Add more services (backend APIs, etc.) to podman-compose.yaml.

---

📄 License

MIT (or your preferred license)