modified: serv_nginx/docker-compose.yml

new file:   serv_nginx/keycloak/.env.keycloak
	new file:   serv_nginx/keycloak/realm-config/setup-realm.json
	modified:   serv_nginx/nginx/nginx-ssl.conf
revert to ald setting into nginx

serv_nginx/docker-compose.yml

@@ -164,38 +164,39 @@ services:
       dockerfile: Dockerfile
     container_name: keycloak
     restart: unless-stopped
+    env_file: ./keycloak/.env.keycloak
     environment:
       # Database configuration
       KC_DB: postgres
       KC_DB_URL: jdbc:postgresql://keycloak-db:5432/keycloak
       KC_DB_USERNAME: keycloak
       KC_DB_PASSWORD: ${KEYCLOAK_DB_PASSWORD:-keycloak}
-      
+
       # Admin credentials
       KEYCLOAK_ADMIN: admin
       KEYCLOAK_ADMIN_PASSWORD: ${KEYCLOAK_ADMIN_PASSWORD:-admin}
-      
+
       # HTTP configuration
       KC_HTTP_ENABLED: true
       KC_HTTP_PORT: 8080
       KC_HTTP_RELATIVE_PATH: /auth
-      
+
       # Hostname configuration
       KC_HOSTNAME: https://yalarba.ru
       KC_HOSTNAME_PATH: /auth
       KC_HOSTNAME_STRICT: true
       KC_HOSTNAME_STRICT_HTTPS: true
       KC_HOSTNAME_STRICT_BACKCHANNEL: false
-      
+
       # Proxy configuration
       KC_PROXY: reencrypt
-      
+
       # Health checks
       KC_HEALTH_ENABLED: true
-      
+
       # Features
       KC_FEATURES: token-exchange,admin-fine-grained-authz
-      
+
       # Java options
       JAVA_OPTS: "-Xms512m -Xmx1024m -Djava.net.preferIPv4Stack=true"
     volumes:
@@ -211,6 +212,7 @@ services:
     image: postgres:15-alpine
     container_name: keycloak-db
     restart: unless-stopped
+    env_file: ./keycloak/.env.keycloak
     environment:
       POSTGRES_DB: keycloak
       POSTGRES_USER: keycloak