Configuring User Credentials

Application users and passwords are managed using the Keycloak web administration console. For more details, please refer to Section Managing Users.

Some users are associated with components, which credentials must be updated accordingly in their respective configurations. This especially applies to the Keycloak administration console. For more details, please refer to Section Configuring Infrastructure Credentials.

To Configure User Credentials

1. In a browser, open the Keycloak web administration console. For a locally deployed Docker installation, you should be able to access it through the following URL: http://localhost:9090/admin (Remember that you have probably changed the Keycloak admin password recently, use your new password).

2. List the available users by clicking on Users and View all users.

   Keycloak View All Users Page

   

3. Select a user, let say backend-service by clicking on its id.

   Keycloak User ID

   

4. Change its password by:

   1. Clicking on Credentials.

   2. Changing the password

   3. For the user account, you can toggle on the Temporary switch. For a technical account, you have to toggle off the Temporary switch.

   4. Click on Reset Credentials.

      Updating a Keycloak User Credentials

      

   5. The following users are technical accounts:

      • backend-service

      • data-service

      • execution-service

      • scenario-service

      They need to be updated in their respective configurations, either:

      • In the file application.yml in the development phase as it applies to all deployments, or

      • Using environment variables in specific deployments, as enabled by tools such as Helm charts.