Fix Keycloak devservice base URL

extensions/devservices/keycloak/src/main/java/io/quarkus/devservices/keycloak/KeycloakDevServicesProcessor.java

@@ -550,14 +550,25 @@ protected void configure() {
             }
 
             if (fixedExposedPort.isPresent()) {
-                addFixedExposedPort(fixedExposedPort.getAsInt(), KEYCLOAK_PORT);
+                if (isHttps()) {
+                    addFixedExposedPort(fixedExposedPort.getAsInt(), KEYCLOAK_HTTPS_PORT);
+                    addExposedPort(KEYCLOAK_PORT);
+                } else {
+                    addFixedExposedPort(fixedExposedPort.getAsInt(), KEYCLOAK_PORT);
+                }
                 if (useSharedNetwork) {
                     // expose random port for which we are able to ask Testcontainers for the actual mapped port at runtime
                     // as from the host's perspective Testcontainers actually expose container ports on random host port
                     addExposedPort(KEYCLOAK_PORT);
+                    if (isHttps()) {
+                        addExposedPort(KEYCLOAK_HTTPS_PORT);
+                    }
                 }
             } else {
                 addExposedPort(KEYCLOAK_PORT);
+                if (isHttps()) {
+                    addExposedPort(KEYCLOAK_HTTPS_PORT);
+                }
             }
 
             if (sharedContainer && LaunchMode.current() == LaunchMode.DEVELOPMENT) {
@@ -578,9 +589,6 @@ protected void configure() {
                 }
                 withCommand(finalStartCommand);
                 addUpConfigResource();
-                if (isHttps()) {
-                    addExposedPort(KEYCLOAK_HTTPS_PORT);
-                }
             } else {
                 addEnv(KEYCLOAK_WILDFLY_USER_PROP, KEYCLOAK_ADMIN_USER);
                 addEnv(KEYCLOAK_WILDFLY_PASSWORD_PROP, KEYCLOAK_ADMIN_PASSWORD);

extensions/keycloak-admin-rest-client/deployment/src/test/resources/app-mtls-config.properties

@@ -1,7 +1,7 @@
 # Configure Dev Services for Keycloak
 quarkus.keycloak.devservices.create-realm=false
 quarkus.keycloak.devservices.port=8083
-quarkus.keycloak.devservices.start-command=start --https-client-auth=required --hostname-strict=false --https-key-store-file=/etc/server-keystore.p12 --https-key-store-password=secret --truststore-paths=/etc/server-ca.crt --https-port=8080
+quarkus.keycloak.devservices.start-command=start --https-client-auth=required --hostname-strict=false --https-key-store-file=/etc/server-keystore.p12 --https-key-store-password=secret --truststore-paths=/etc/server-ca.crt
 # using PEM CA cert because generated PKCS12 server trust-store is encrypted, but KC requires no password for trust-store
 quarkus.keycloak.devservices.resource-aliases.trust-store=server-ca.crt
 quarkus.keycloak.devservices.resource-mappings.trust-store=/etc/server-ca.crt

extensions/keycloak-admin-resteasy-client/deployment/src/test/resources/app-mtls-config.properties

@@ -1,7 +1,7 @@
 # Configure Dev Services for Keycloak
 quarkus.keycloak.devservices.create-realm=false
 quarkus.keycloak.devservices.port=8083
-quarkus.keycloak.devservices.start-command=start --https-client-auth=required --hostname-strict=false --https-key-store-file=/etc/server-keystore.p12 --https-key-store-password=secret --truststore-paths=/etc/server-ca.crt --https-port=8080
+quarkus.keycloak.devservices.start-command=start --https-client-auth=required --hostname-strict=false --https-key-store-file=/etc/server-keystore.p12 --https-key-store-password=secret --truststore-paths=/etc/server-ca.crt
 # using PEM CA cert because generated PKCS12 server trust-store is encrypted, but KC requires no password for trust-store
 quarkus.keycloak.devservices.resource-aliases.trust-store=server-ca.crt
 quarkus.keycloak.devservices.resource-mappings.trust-store=/etc/server-ca.crt