Known limitations

Keycloak requires SSL for requests from external sources

When deploying the Camunda stack to a provider it is important to confirm that the IP ranges used for container to container communication align with the IP ranges that Keycloak consider to be "local". By default, Keycloak considers all IPs outside those listed in their external requests documentation to be external and therefore require SSL.

As the Camunda Platform Helm Charts currently do not provide support for the distribution of the Keycloak TLS key to the other containers, we would recommend viewing the solution available in the Identity documentation for advice.

Keycloak requires SSL for requests from external sources​

Keycloak requires SSL for requests from external sources