3 files changed, 15 insertions(+), 1 deletions(-)

M roles/keycloak/files/keycloak.conf
M roles/keycloak/tasks/main.yml
M roles/keycloak/templates/keycloak.conf.j2

@@ 15,6 15,15 @@ server {
         proxy_set_header X-Forwarded-Proto $scheme;
     }
 
+    location ~ /auth/realms/[a-z]+/metrics {
+        include /etc/nginx/snippets/internal_access.conf;
+        proxy_pass http://127.0.0.1:8444;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $remote_addr;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+
     location = / {
         return 301 https://$server_name/auth/realms/xenrox/account;
     }

@@ 8,6 8,11 @@
     name: keycloak
     state: present
 
+- name: Install prometheus metrics provider
+  community.general.pacman:
+    name: keycloak-metrics-spi
+    state: present
+
 - name: Create db user
   community.general.postgresql_user:
     name: keycloak

@@ 20,7 20,7 @@ db-url=jdbc:postgresql://localhost/keycloak
 #health-enabled=true
 
 # If the server should expose metrics endpoints.
-#metrics-enabled=true
+metrics-enabled=true
 
 # HTTP