keycloak12+mysql5.7 初次启动报错处理

现象

启动报错

ERROR [org.keycloak.connections.jpa.updater.liquibase.LiquibaseJpaUpdaterProvider] (ServerService Thread Pool – 65) Error has occurred while updating the database: liquibase.exception.MigrationFailedException: Migration failed for change set META-INF/jpa-changelog-1.9.1.xml::1.9.1::keycloak:
Reason: liquibase.exception.DatabaseException: Row size too large. The maximum row size for the used table type, not counting BLOBs, is 65535. This includes storage overhead, check the manual. You have to change some columns to TEXT or BLOBs [Failed SQL: ALTER TABLE keycloak.REALM MODIFY CERTIFICATE VARCHAR(4000)]

可以看见keycloak使用了liquibase管理数据库版本
修改表REALEM字段CERTIFICATE为VARCHAR(4000)时,导致行大小超过了MYSQL上限65535

解决

将表编码类型改为utf8(原本utf8mb4字符长度是4个字节,utf8是3个字节)

源码

查看源码发现,其实REALM这个表中的CERTIFICATE等几个大文本字段在后来的版本中都删除了,但是liquibase需要顺序执行变更集,导致执行到1.9.1这个版本时过不去了,真的尴尬

  • jpa-changelog-1.9.1.xml
<databaseChangeLog xmlns="http://www.liquibase.org/xml/ns/dbchangelog" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.liquibase.org/xml/ns/dbchangelog http://www.liquibase.org/xml/ns/dbchangelog/dbchangelog-3.1.xsd">
    <changeSet author="keycloak" id="1.9.1">
        <preConditions onSqlOutput="TEST" onFail="MARK_RAN">
            <not>
                <dbms type="db2" />
            </not>
        </preConditions>

        <modifyDataType tableName="REALM" columnName="PRIVATE_KEY" newDataType="VARCHAR(4000)"/>
        <modifyDataType tableName="REALM" columnName="PUBLIC_KEY" newDataType="VARCHAR(4000)"/>
        <modifyDataType tableName="REALM" columnName="CERTIFICATE" newDataType="VARCHAR(4000)"/>
    </changeSet>
</databaseChangeLog>
  • jpa-changelog-2.3.0.xml
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!--
  ~ Copyright 2016 Red Hat, Inc. and/or its affiliates
  ~ and other contributors as indicated by the @author tags.
  ~
  ~ Licensed under the Apache License, Version 2.0 (the "License");
  ~ you may not use this file except in compliance with the License.
  ~ You may obtain a copy of the License at
  ~
  ~ http://www.apache.org/licenses/LICENSE-2.0
  ~
  ~ Unless required by applicable law or agreed to in writing, software
  ~ distributed under the License is distributed on an "AS IS" BASIS,
  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  ~ See the License for the specific language governing permissions and
  ~ limitations under the License.
  -->

<databaseChangeLog xmlns="http://www.liquibase.org/xml/ns/dbchangelog" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.liquibase.org/xml/ns/dbchangelog http://www.liquibase.org/xml/ns/dbchangelog/dbchangelog-3.1.xsd">

     <changeSet author="bburke@redhat.com" id="2.3.0">
        <createTable tableName="FEDERATED_USER">
            <column name="ID" type="VARCHAR(255)">
                <constraints nullable="false"/>
            </column>
            <column name="STORAGE_PROVIDER_ID" type="VARCHAR(255)">
            </column>
            <column name="REALM_ID" type="VARCHAR(36)">
                <constraints nullable="false" />
            </column>
        </createTable>
         <addPrimaryKey columnNames="ID" constraintName="CONSTR_FEDERATED_USER" tableName="FEDERATED_USER"/>

         <dropDefaultValue tableName="USER_ENTITY" columnName="TOTP" />
         <dropColumn tableName="USER_ENTITY" columnName="TOTP" />

         <addColumn tableName="IDENTITY_PROVIDER">
             <column name="PROVIDER_DISPLAY_NAME" type="VARCHAR(255)"></column>
         </addColumn>

         <addColumn tableName="COMPONENT">
             <column name="SUB_TYPE" type="VARCHAR(255)"></column>
         </addColumn>

         <customChange class="org.keycloak.connections.jpa.updater.liquibase.custom.ExtractRealmKeysFromRealmTable"/>
         <dropColumn tableName="REALM" columnName="CODE_SECRET" />
         <dropColumn tableName="REALM" columnName="PRIVATE_KEY" />
         <dropColumn tableName="REALM" columnName="PUBLIC_KEY" />
         <dropColumn tableName="REALM" columnName="CERTIFICATE" />

         <addColumn tableName="USER_CONSENT">
             <column name="CREATED_DATE" type="BIGINT"/>
             <column name="LAST_UPDATED_DATE" type="BIGINT"/>
         </addColumn>

     </changeSet>

</databaseChangeLog>

posted on   路过君  阅读(100)  评论(0编辑  收藏  举报

相关博文:
·  MYSQL 一次更新BLOB数据报错SQLSTATE(08S01)处理
·  Flink MYSQL CDC异常处理
·  Flowable启动报错problem during schema upgrade&&couldn‘t upgrade db schema:
·  MySQL 建表报错 Specified key was too long; max key length is 1000 bytes
·  check the manual that corresponds to your MySQL server version for the right syntax to use near
阅读排行:
· 25岁的心里话
· 闲置电脑爆改个人服务器(超详细) #公网映射 #Vmware虚拟网络编辑器
· 零经验选手,Compose 一天开发一款小游戏!
· 因为Apifox不支持离线,我果断选择了Apipost!
· 通过 API 将Deepseek响应流式内容输出到前端
历史上的今天:
2020-04-11 spring 启动时自动运行
2020-04-11 spring cloud oauth2授权服务 默认tokenService配置源码
2020-04-11 spring cloud 搭建oauth2授权服务 使用redis存储令牌
2020-04-11 spring cloud oauth2授权服务 clientDetails配置源码
2020-04-11 spring 验证框架
2020-04-11 IDEA 插件整理
2020-04-11 spring security笔记 默认登陆页面源码

导航

< 2025年3月 >
23 24 25 26 27 28 1
2 3 4 5 6 7 8
9 10 11 12 13 14 15
16 17 18 19 20 21 22
23 24 25 26 27 28 29
30 31 1 2 3 4 5
点击右上角即可分享
微信分享提示
SQL AI 助手