Skip to main content
Version: 2.2.0

Deployment

Architecture

The Session Data Store has the following service dependencies:

  • Valkey
    • Required by SDS for storing key-value data
  • IAMS (Keycloak + AAS)
    • Required by SDS for authenticated session data storage

Keycloak Client Configuration

SDS requires a Keycloak Client with the necessary service account roles to access the Keycloak admin API. Follow the below steps to create a required Keycloak Client.

  1. Login to Keycloak Admin Console and switch the realm. This example demonstrates using AOH realm.

Select Default Realm

  1. Click on Clients in the side menu and click on Create client button.

Create Client

  1. Go through the steps below to create a new client.
  • Fill up the required fields (you can enter your own value here) Create Client Step 1
  • Set capabilities settings Create Client Step 2
  • Leave the fields below empty and click on Save. Create Client Step 3
  1. Click on Service accounts roles tab and click on Client roles.

Client_Role

  1. Find and assign the required roles to the client as shown in the below image.

Keycloak_roles

  1. Go to the Credentials tab in the client details page to find the KEYCLOAK_CLIENTSCRET for server configuration.

Client Secret

Infrastructure as Code Sample Deployments

Please refer to our sample SDS deployment infrastructure code for implementation examples.