Add health check support for Keycloak container

src/Aspire.Hosting.Keycloak/KeycloakResourceBuilderExtensions.cs

@@ -14,7 +14,10 @@ public static class KeycloakResourceBuilderExtensions
 {
     private const string AdminEnvVarName = "KEYCLOAK_ADMIN";
     private const string AdminPasswordEnvVarName = "KEYCLOAK_ADMIN_PASSWORD";
+    private const string HealthCheckEnvVarName = "KC_HEALTH_ENABLED";
     private const int DefaultContainerPort = 8080;
+    private const int HealthCheckContainerPort = 9000;
+    private const string HealthEndpointName = "health";
     private const string RealmImportDirectory = "/opt/keycloak/data/import";
 
     /// <summary>
@@ -59,10 +62,13 @@ public static IResourceBuilder<KeycloakResource> AddKeycloak(
             .WithImageRegistry(KeycloakContainerImageTags.Registry)
             .WithImageTag(KeycloakContainerImageTags.Tag)
             .WithHttpEndpoint(port: port, targetPort: DefaultContainerPort)
+            .WithHttpEndpoint(targetPort: HealthCheckContainerPort, name: HealthEndpointName)
+            .WithHttpHealthCheck(endpointName: HealthEndpointName, path: "/health/ready")
             .WithEnvironment(context =>
             {
                 context.EnvironmentVariables[AdminEnvVarName] = resource.AdminReference;
                 context.EnvironmentVariables[AdminPasswordEnvVarName] = resource.AdminPasswordParameter;
+                context.EnvironmentVariables[HealthCheckEnvVarName] = "true";
             });
 
         if (builder.ExecutionContext.IsRunMode)

tests/Aspire.Hosting.Keycloak.Tests/KeycloakResourceBuilderTests.cs

@@ -26,7 +26,7 @@ public void AddKeycloakWithDefaultsAddsAnnotationMetadata()
         var containerResource = Assert.Single(appModel.Resources.OfType<KeycloakResource>());
         Assert.Equal(resourceName, containerResource.Name);
 
-        var endpoint = Assert.Single(containerResource.Annotations.OfType<EndpointAnnotation>());
+        var endpoint = Assert.Single(containerResource.Annotations.OfType<EndpointAnnotation>().Where(e => e.Name == "http"));
         Assert.Equal(8080, endpoint.TargetPort);
         Assert.False(endpoint.IsExternal);
         Assert.Equal("http", endpoint.Name);
@@ -35,6 +35,15 @@ public void AddKeycloakWithDefaultsAddsAnnotationMetadata()
         Assert.Equal("http", endpoint.Transport);
         Assert.Equal("http", endpoint.UriScheme);
 
+        var healthEndpoint = Assert.Single(containerResource.Annotations.OfType<EndpointAnnotation>().Where(e => e.Name == "health"));
+        Assert.Equal(9000, healthEndpoint.TargetPort);
+        Assert.False(healthEndpoint.IsExternal);
+        Assert.Equal("health", healthEndpoint.Name);
+        Assert.Null(healthEndpoint.Port);
+        Assert.Equal(ProtocolType.Tcp, healthEndpoint.Protocol);
+        Assert.Equal("http", healthEndpoint.Transport);
+        Assert.Equal("http", healthEndpoint.UriScheme);
+
         var containerAnnotation = Assert.Single(containerResource.Annotations.OfType<ContainerImageAnnotation>());
         Assert.Equal(KeycloakContainerImageTags.Tag, containerAnnotation.Tag);
         Assert.Equal(KeycloakContainerImageTags.Image, containerAnnotation.Image);
@@ -142,14 +151,21 @@ public async Task VerifyManifest()
               ],
               "env": {
                 "KEYCLOAK_ADMIN": "admin",
-                "KEYCLOAK_ADMIN_PASSWORD": "{keycloak-password.value}"
+                "KEYCLOAK_ADMIN_PASSWORD": "{keycloak-password.value}",
+                "KC_HEALTH_ENABLED": "true"
               },
               "bindings": {
                 "http": {
                   "scheme": "http",
                   "protocol": "tcp",
                   "transport": "http",
                   "targetPort": 8080
+                },
+                "health": {
+                  "scheme": "http",
+                  "protocol": "tcp",
+                  "transport": "http",
+                  "targetPort": 9000
                 }
               }
             }