From 8adc018cb317fe172d783f731e5c347b884a1aae Mon Sep 17 00:00:00 2001
From: Helmut Wolf <helmut.wolf@world-direct.at>
Date: Mon, 8 Jan 2024 18:19:00 +0100
Subject: [PATCH] fix/#149: keycloak_quarkus: Allow ports <1024 (e.g., :443)

---
 roles/keycloak_quarkus/templates/keycloak.service.j2 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/keycloak_quarkus/templates/keycloak.service.j2 b/roles/keycloak_quarkus/templates/keycloak.service.j2
index 1854463..a529c5b 100644
--- a/roles/keycloak_quarkus/templates/keycloak.service.j2
+++ b/roles/keycloak_quarkus/templates/keycloak.service.j2
@@ -20,6 +20,9 @@ Restart=always
 Restart=on-failure
 {% endif %}
 RestartSec={{ keycloak_quarkus_service_restartsec }}
+{% if keycloak_quarkus_http_port|int < 1024 or keycloak_quarkus_https_port|int < 1024 %}
+AmbientCapabilities=CAP_NET_BIND_SERVICE
+{% endif %}
 
 [Install]
 WantedBy=multi-user.target