https://github.com/hendisantika/go-fiber-keycloak-nextjs

GoLang Fiber Keycloak NextJS 14
https://github.com/hendisantika/go-fiber-keycloak-nextjs

Last synced: about 2 months ago
JSON representation

GoLang Fiber Keycloak NextJS 14

• Host: GitHub
• URL: https://github.com/hendisantika/go-fiber-keycloak-nextjs
• Owner: hendisantika
• Created: 2024-08-16T00:07:58.000Z (10 months ago)
• Default Branch: main
• Last Pushed: 2024-08-19T14:47:35.000Z (10 months ago)
• Last Synced: 2025-03-26T18:21:25.225Z (2 months ago)
• Language: TypeScript
• Size: 571 KB
• Stars: 5
• Watchers: 1
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# Golang Fiber Keycloak NextJS 14

## Keycloak

Keycloak is an open-source identity and access management (IAM) solution developed by Red Hat. It provides features for

securing applications and services with minimal effort, enabling developers to manage authentication and authorization

centrally. Here are some key features and concepts associated with Keycloak:

### Centralized User Management

Keycloak allows you to centralize user management in one place, making it easier to manage users, roles, and permissions

across multiple applications and services. It supports user federation, which means you can integrate it with existing

user directories, such as LDAP or Active Directory.

### Single Sign-On (SSO) and Single Log-Out

One of the most significant features of Keycloak is its support for Single Sign-On (SSO). SSO enables users to log in

once and gain access to multiple applications without being prompted to log in again at each of them. Similarly, Single

Log-Out allows users to log out from all applications simultaneously.

### Social Login

Keycloak supports social login, allowing users to sign in using their social media accounts such as Google, Facebook,

Twitter, etc. This feature enhances the user experience by simplifying the registration and login processes.

### Multi-factor Authentication (MFA)

For enhanced security, Keycloak supports Multi-factor Authentication (MFA). This adds an extra layer of security by

requiring users to provide two or more verification factors to gain access to an application.

### OpenID Connect (OIDC) and SAML

Keycloak implements modern protocols like OpenID Connect (OIDC) and SAML 2.0 for authentication and authorization,

making it versatile and compatible with a wide range of applications.

### Customizable Themes

The look and feel of the login pages served by Keycloak can be customized according to your branding requirements.

Keycloak allows for theme customizations where you can change the appearance of the login, registration, and account

management pages.

### Administration Console

Keycloak comes with an easy-to-use web-based administration console for managing realms, users, roles, and permissions.

A realm in Keycloak is a space where you manage your users, credentials, roles, and groups.

### Security

Keycloak provides robust security features out of the box, including SSL/TLS, password policies, brute force detection,

and more. It also allows for the secure storage of user credentials.

### API Access Management

Keycloak allows for securing application APIs by using tokens (JWT tokens or SAML assertions). It makes it easy to

define which resources are secured and which roles or clients have access to them.

### Scalability and High Availability

Keycloak is designed to be scalable and can be deployed in a high-availability configuration to ensure that

authentication services are always available to users and applications.

### Typical Use Cases

* Enterprise Applications: Organizations use Keycloak to manage authentication across a suite of applications, providing

  a seamless and secure user experience.

* Microservices Security: Keycloak can act as a central authentication server in microservices architectures, managing

  access across multiple services.

* APIs and Mobile Apps: Keycloak is used to secure APIs and mobile applications by issuing and verifying tokens.

### How It Works

* **Realms**: A realm in Keycloak is a space where you manage a set of users, credentials, roles, and groups. A realm

  manages everything related to identity management.

* **Client**s: Applications and services that want to use Keycloak for authentication are called clients. Clients can be

  configured to use different protocols (OAuth2, SAML, etc.).

* **Roles:** Roles define permissions within a realm. They can be assigned to users or groups to control access to

  applications.

* **Groups**: Users can be grouped into groups, and roles can be assigned to groups to manage permissions collectively.

* **Identi**ty Providers: Keycloak can be configured to authenticate users from external identity providers like Google,

  Facebook, or corporate identity providers via SAML or LDAP.

### Why Use Keycloak?

Keycloak simplifies the process of managing user authentication and authorization, especially in scenarios involving

multiple applications or services. By providing a centralized system for managing user identities and access control, it

reduces the burden on individual applications to handle security and helps ensure consistent security practices across

an organization.

### Setting up with docker

docker-compose.yml file

```yaml

services:

  postgres:

    image: postgres:16.4-alpine3.20

    volumes:

      - ./postgres_data:/var/lib/postgresql/data

    environment:

      POSTGRES_DB: ${POSTGRES_DB}

      POSTGRES_USER: ${POSTGRES_USER}

      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}

    networks:

      - keycloak_network

  keycloak:

    image: quay.io/keycloak/keycloak:25.0.2

    command: start

    environment:

      KC_HOSTNAME: localhost

      KC_HOSTNAME_PORT: 8080

      KC_HOSTNAME_STRICT_BACKCHANNEL: false

      KC_HTTP_ENABLED: true

      KC_HOSTNAME_STRICT_HTTPS: false

      KC_HEALTH_ENABLED: true

      KEYCLOAK_ADMIN: ${KEYCLOAK_ADMIN}

      KEYCLOAK_ADMIN_PASSWORD: ${KEYCLOAK_ADMIN_PASSWORD}

      KC_DB: postgres

      KC_DB_URL: jdbc:postgresql://postgres/${POSTGRES_DB}

      KC_DB_USERNAME: ${POSTGRES_USER}

      KC_DB_PASSWORD: ${POSTGRES_PASSWORD}

    ports:

      - "8080:8080"

    restart: always

    depends_on:

      - postgres

    networks:

      - keycloak_network

volumes:

  postgres_data:

    driver: local

networks:

  keycloak_network:

    driver: bridge

```

.env file

```shell

POSTGRES_DB=keycloak_db

POSTGRES_USER=keycloak_db_user

POSTGRES_PASSWORD=keycloak_db_user_password

KEYCLOAK_ADMIN=admin

KEYCLOAK_ADMIN_PASSWORD=passwo

```

### Things todo list

1. Clone this repository: `git clone https://github.com/hendisantika/go-fiber-keycloak-nextjs.git`

2. Navigate to the folder: `cd go-fiber-keycloak-nextjs`

3. Navigate to the backend: `cd backend`

4. Run Backend project: `go run main.go`

5. Navigate to the frontend: `cd frontend`

6. Run Frontend project: `pnpm install && pnpm dev`

7. Open your favorite browser: http://localhost:3000

8. Navigate to docker folder: `cd docker`

9. Run docker compose: `docker compose -f compose2.yml up`

### Image Screenshots

Home Page

![Home Page](img/home.png "Home Page")

Keycloak Login

![Keycloak Login](img/keycloak.png "Keycloak Login")

Create Product Page

![Create Product Page](img/create_product.png "Create Product Page")

List Products Page

![List Products Page](img/list_products.png "List Products Page")

![List Products Page](img/list_products2.png "List Products Page")

Unauthorize Page

![Unauthorize Page](img/unauthorize.png "Unauthorize Page")