Welcome to the Keycloak DSFR Theme, a Keycloak theme with react-dsfr and Keycloakify.
To see the theme in action, please visit the SILL and attempt to log in.
This theme is configurable at runtime, via providing environnement variable, there is no need to clone this repository.
Simply use the bundled .jar file that is released an asset with every new GitHub Release of this project.
- For all Keycloak version prior to 23 use: retrocompat-keycloak-theme.jar.
- For Keycloak 23: keycloak-theme.jar.
- Keycloak 24 and up: Not yet supported, this theme will be updated shortly.
NOTE: Keycloak 22 (and only this specific version) is not fully supported. In this version, only the Login theme works, not the Account theme.
Here are some screenshots showcasing the theme:
For instruction on how to load the theme into your Keycloak instance you can refer to this guide.
For guidance on how to configure AgentConnect/FranceConnect, you can refer to our comprehensive setup guide.
We have customized the modern register-user-profile.ftl registration page, which allows you to implement features such as an accept list of email domains for registration. This feature can be highly useful, for instance, if you want to restrict registration to your service to public servants. Here is the regular expression used for the SILL's email domain accept list.
Although the register.ftl page has been somewhat superseded by Keycloak, it remains the default. Hence, we recommend enabling the User Profile feature in Keycloak. Instructions for doing so can be found here.
Several environment variables can be used to tailor the theme to your needs:
DSFR_THEME_HOME_URL
DSFR_THEME_SERVICE_TITLE
DSFR_THEME_BRAND_TOP
DSFR_THEME_TOS_URL
DSFR_THEME_CONTACT_EMAILThese variables should be made available to the process running Keycloak on your server.
If you are deploying Keycloak on Kubernetes using Helm, here's how to configure your settings:
...
extraEnv: |
- name: DSFR_THEME_HOME_URL
value: https://code.gouv.fr
- name: DSFR_THEME_SERVICE_TITLE
value: CodeGouv
- name: DSFR_THEME_BRAND_TOP
value: "République<br/>Française"
- name: DSFR_THEME_TOS_URL
value: '{ "fr": "https://code.gouv.fr/sill/tos_fr.md", "en": "https://code.gouv.fr/sill/tos_en.md" }'
- name: DSFR_THEME_CONTACT_EMAIL
value: [email protected]
- name: JAVA_OPTS
value: >-
-Dkeycloak.profile=preview
...To enable internationalization in the theme you must first enable it in Keycloak.
The theme is available in French and English but there's no language select provided in the login and registration pages.
It's up to you to redirect your user to the login page in the correct language by adding the ui_locales parameter to the login URL. (e.g.: https://sso.code.gouv.fr/auth/realms/sill/protocol/openid-connect/auth?client_id=sill&redirect_uri=https%3A%2F%2Fsill.code.gouv.fr%2Flogin%2Fcallback&response_type=code&scope=openid&ui_locales=fr)
You can refer to the keycloakify-starter repo and the Keycloakify documentation for more information on how to develop a Keycloak theme.
This project is licensed under the MIT License, courtesy of the Direction interministérielle du numérique.