keycloak

问题 I'm using keycloak 3.4 and spring boot to develop a web app. I'm using the Active Directory as User Federeation to retrieve all users information. But to use those information inside my web app I think I have to save them inside the "local-webapp" database. So after the users are logged, how can I save them inside my database? I'm thinking about a scenario like: "I have an object A which it refers to the user B, so I have to put a relation between them. So I add a foreign key." In that case I

问题 I'm using keycloak 3.4 and spring boot to develop a web app. I'm using the Active Directory as User Federeation to retrieve all users information. But to use those information inside my web app I think I have to save them inside the "local-webapp" database. So after the users are logged, how can I save them inside my database? I'm thinking about a scenario like: "I have an object A which it refers to the user B, so I have to put a relation between them. So I add a foreign key." In that case I

问题 I'm trying to integrate Terraform Enterprise with Keycloak using SAML for SSO. I'm following IdP initiated authentication workflow. After successful authentication, the re-direct from Keycloak to TFE is running into following error. 2020-03-30 22:51:06 [DEBUG] [b71be8e2-8e60-4077-9610-42519931802e] saml: Auth errors: https://{my-tfe-host}/users/saml/metadata is not a valid audience for this Response - Valid audiences: terraform 2020-03-30 22:51:06 [INFO] [b71be8e2-8e60-4077-9610-42519931802e]

问题 I am very beginner of keycloak. I need some help. I have SSO solution and I want to integrate it with jenkins. In this point, I want to permit some users based role. OpenID -- keycloak -- jenkins : all users who are in openid can login jenkins (I don't want) OpenID -- keycloak (check role) -- jenkins : all users who are in openid and also have specific role in keycloak can login jenkins (I want) I think this is very simple and common example of using keycloak, but I can't find the solution.

问题 I am very beginner of keycloak. I need some help. I have SSO solution and I want to integrate it with jenkins. In this point, I want to permit some users based role. OpenID -- keycloak -- jenkins : all users who are in openid can login jenkins (I don't want) OpenID -- keycloak (check role) -- jenkins : all users who are in openid and also have specific role in keycloak can login jenkins (I want) I think this is very simple and common example of using keycloak, but I can't find the solution.

问题 I am very beginner of keycloak. I need some help. I have SSO solution and I want to integrate it with jenkins. In this point, I want to permit some users based role. OpenID -- keycloak -- jenkins : all users who are in openid can login jenkins (I don't want) OpenID -- keycloak (check role) -- jenkins : all users who are in openid and also have specific role in keycloak can login jenkins (I want) I think this is very simple and common example of using keycloak, but I can't find the solution.

问题 I am very beginner of keycloak. I need some help. I have SSO solution and I want to integrate it with jenkins. In this point, I want to permit some users based role. OpenID -- keycloak -- jenkins : all users who are in openid can login jenkins (I don't want) OpenID -- keycloak (check role) -- jenkins : all users who are in openid and also have specific role in keycloak can login jenkins (I want) I think this is very simple and common example of using keycloak, but I can't find the solution.

问题 I'm trying to setup a docker image with some custom things, such as a logback extension, so I have some CLI scripts, like this one: /subsystem=logging: remove() /extension=org.jboss.as.logging: remove() /extension=com.custom.logback: add() /subsystem=com.custom.logback: add() I also have CLI scripts to configure datasource pool, themes, add some SPI on keycloak-server subsystem, etc. I put these script in the /opt/jboss/startup-scripts directory. However when I create the container the things

问题 My setup is: EAP 6.4.18 keycloak-saml adapter Third party IdP server (not a keycloak server) I'm trying to secure one of the web applications inside an EAR. Currently my standalone.xml looks like this: <subsystem xmlns="urn:jboss:domain:keycloak-saml:1.3"> <secure-deployment name="myapp.war"> <SP entityID="https://mydomain/myapp/" sslPolicy="EXTERNAL" nameIDPolicyFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" logoutPage="/logout.jsp" forceAuthentication="false" isPassive="false

问题 My setup is: EAP 6.4.18 keycloak-saml adapter Third party IdP server (not a keycloak server) I'm trying to secure one of the web applications inside an EAR. Currently my standalone.xml looks like this: <subsystem xmlns="urn:jboss:domain:keycloak-saml:1.3"> <secure-deployment name="myapp.war"> <SP entityID="https://mydomain/myapp/" sslPolicy="EXTERNAL" nameIDPolicyFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" logoutPage="/logout.jsp" forceAuthentication="false" isPassive="false