ldraney/pal-e-platform
1
0
Fork 0
Code Issues 91 Pull requests 5 Projects Releases Packages Wiki Activity Actions

Keycloak client rename — pal-e-docs-app to pal-e-app #255

New issue
Closed
opened 2026-03-30 22:03:31 +00:00 by forgejo_admin · 1 comment
forgejo_admin commented 2026-03-30 22:03:31 +00:00
Contributor
Copy link

Type

Feature

Lineage

Standalone — scoped from pal-e-app project (project-pal-e-app).

Repo

forgejo_admin/pal-e-platform

User Story

As a stakeholder
I want to log in via Keycloak with clean redirect URIs
So that the auth flow works with the renamed pal-e-app deployment

Context

The Keycloak client in the pal-e realm is currently named pal-e-docs-app with redirect URIs pointing to pal-e-docs-app.tail5b443a.ts.net. This needs to be renamed to pal-e-app with redirect URIs updated to pal-e-app.tail5b443a.ts.net. The client is a public client using PKCE (no secret). Also update the pal-e-app frontend keycloak.ts to reference the new client ID.

File Targets

Files to modify:

  • Keycloak admin console — rename client or create new one
  • terraform/ — if Keycloak clients are managed via terraform

Files NOT to touch:

  • Westside Basketball Keycloak realm — different realm entirely

Acceptance Criteria

  • Keycloak client ID is pal-e-app in the pal-e realm
  • Redirect URIs include https://pal-e-app.tail5b443a.ts.net/*
  • PKCE (S256) still enabled, public client
  • pal-e-app frontend keycloak.ts updated with new client ID

Test Expectations

  • Manual: login flow works end to end
  • Manual: token refresh works

Constraints

  • Check if Keycloak clients are terraform-managed before making manual changes
  • Coordinate with namespace rename (sibling ticket)

Checklist

  • PR opened
  • Tests pass
  • No unrelated changes

Related

  • project-pal-e-app
  • arch-deployment-pal-e-app
### Type Feature ### Lineage Standalone — scoped from pal-e-app project (project-pal-e-app). ### Repo `forgejo_admin/pal-e-platform` ### User Story As a stakeholder I want to log in via Keycloak with clean redirect URIs So that the auth flow works with the renamed pal-e-app deployment ### Context The Keycloak client in the pal-e realm is currently named pal-e-docs-app with redirect URIs pointing to pal-e-docs-app.tail5b443a.ts.net. This needs to be renamed to pal-e-app with redirect URIs updated to pal-e-app.tail5b443a.ts.net. The client is a public client using PKCE (no secret). Also update the pal-e-app frontend keycloak.ts to reference the new client ID. ### File Targets Files to modify: - Keycloak admin console — rename client or create new one - `terraform/` — if Keycloak clients are managed via terraform Files NOT to touch: - Westside Basketball Keycloak realm — different realm entirely ### Acceptance Criteria - [ ] Keycloak client ID is pal-e-app in the pal-e realm - [ ] Redirect URIs include https://pal-e-app.tail5b443a.ts.net/* - [ ] PKCE (S256) still enabled, public client - [ ] pal-e-app frontend keycloak.ts updated with new client ID ### Test Expectations - [ ] Manual: login flow works end to end - [ ] Manual: token refresh works ### Constraints - Check if Keycloak clients are terraform-managed before making manual changes - Coordinate with namespace rename (sibling ticket) ### Checklist - [ ] PR opened - [ ] Tests pass - [ ] No unrelated changes ### Related - `project-pal-e-app` - `arch-deployment-pal-e-app`
forgejo_admin commented 2026-04-12 15:37:56 +00:00
Author
Contributor
Copy link

Closing — both pal-e-docs-app and pal-e-app names are obsolete; canonical is pal-e-production. Forward-facing Keycloak work deferred under forgejo_admin/pal-e-platform#278.

Closing — both `pal-e-docs-app` and `pal-e-app` names are obsolete; canonical is `pal-e-production`. Forward-facing Keycloak work deferred under forgejo_admin/pal-e-platform#278.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
fix-gem-bin-path
netpol-westside-ror
fix-woodpecker-multi-pipeline
345-harbor-mobile-css
290-payment-pipeline-observability
spec-board-centric-renderer
284-fix-add-pal-e-docs-namespace-to-postgres
284-add-pal-e-docs-postgres-netpol
188-cross-repo-worktree-isolation-for-parall
111-fix-keycloak-probe
86-fix-rotate-woodpecker-api-token-in-salt
71-feat-deploy-pyrra-slo-manager-with-servi
64-hotfix-woodpecker-oauth-login-broken-for
18-fix-grafana-duplicate-default-datasource-v2
18-fix-grafana-duplicate-default-datasource
13-fix-cnpg-all-parameters
No results found.
Labels
Clear labels   
domain:backend

   
domain:devops

   
domain:frontend

   
status:approved

QA passed, awaiting merge approval

  
status:in-progress

Dev agent is actively working

  
status:needs-fix

QA found issues, back to dev

  
status:qa

PR submitted, awaiting QA review

  
type:bug

Bug fix

  
type:devops

Infrastructure/CI/config work

  
type:feature

New functionality

No labels
domain:backend
domain:devops
domain:frontend
status:approved
status:in-progress
status:needs-fix
status:qa
type:bug
type:devops
type:feature
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
ldraney/pal-e-platform#255
No description provided.