Client provisioning

Client provisioning is the process of seting up and deploying a container for a new client. In this project we will focus on self-service setup. The idea is that a client can set up new environments and has access to them via single sign on.

Process

CamundaClient provisioning

img-client-provisioning.png img-client-provisioning.png

The process needs to differentiate between a new environment and an existing one. The steps to create or update an environment differ.

To create a new environment:

  • Deploy environment using ArgoCD and Kustomize
  • Create realm in Keycloak
  • Create Keycloak client for the frontend
  • Create identity providers
  • Configure the security headers
  • Create the admin user
  • Send password update mail to admin user

When updating the environment:

  • Update the SMTP server
  • Configure Keycloak themes
  • Update locales
  • Update API cliens and roles