[Hawkular-dev] Should Keycloak integration be optional?

Boleslaw Dawidowicz bdawidow at redhat.com
Thu Feb 5 04:55:20 EST 2015 

I think major question is what do you need - and then please let us know 
on keycloak-dev ;) We'll either try to convince you that you are wrong 
or put your usecase on our roadmap.

If question is between somehow "embedding" keycloak or just have it 
locally installed there is also second part of the story. As it is Auth 
server (Identity Provider) with SSO capabilities for true production 
deployment you would rather want to have this separately deployed. 
You'll likely need to be able to switch to using external instance anyway.

W dniu 2015-02-04 o 15:28, Juraci Paixão Kröhling pisze:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 02/04/2015 03:23 PM, Heiko Braun wrote:
>> Does keycloak support other auth mechanisms that don't build on
>> http?
>
> No. Keycloak is a "super OAuth" solution, and that's on top of HTTP.
> What kind of other authentication mechanisms are you thinking about?
>
>> Does keycloak limit the reuse of hawkular components?
>
> Not that I'm aware of. All it does is to put a layer between the
> incoming request and the business method on the backend, like JAAS.
>
>> Does keycloak have a desirable out-of-the-box experience? (Read
>> addtional setup costs)
>
> Depends on the definition of "desirable". Right now, the common
> practice for projects consuming Keycloak seems to build an "appliance"
> distribution, which builds on top of Wildfly and delivers Keycloak
> pre-installed/configured + the target application (hawkular, in our
> case).
>
> - - Juca.
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1
>
> iQEcBAEBAgAGBQJU0iyOAAoJECKM1e+fkPrXj+AH/2hF7EBlQ2n7VVSbkjGLODgo
> C33cMgBpsonGUFZcd8LXAOdl2ZpklpRzjdcOpVB6OJUasV5Ek/pONyTn8LMStJzV
> nJrHTBKtR71+V9+A2g/cSbv4x7vynhNqSAHEq3a+OwEhzZ8DT+sQnxFRr+QdMMWh
> e+QiVUBCgx/4IBL1gsw40OBy/I1d7NULwS7fzMvunnacHYEibZc4ACgQwy/LPCih
> xbAmYn8SP5IgLT+TqLSnNUMJps44phkdYsSkku3wotH9YkOI55PNlYU9iTbYa9kr
> SCe1aIeIeA5hooCVJ92FMeRF5Pyf9OOgn1flKdurC0nvdWBe3mIlza32KOWLY9U=
> =ZYJJ
> -----END PGP SIGNATURE-----
> _______________________________________________
> hawkular-dev mailing list
> hawkular-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/hawkular-dev
>

-- 
Bolesław Dawidowicz
Supervisor, Software Engineering | Red Hat Middleware Security

More information about the hawkular-dev mailing list