[keycloak-dev] Admin console

Stian Thorgersen stian at redhat.com
Thu Nov 14 10:58:53 EST 2013 


----- Original Message -----
> From: "Bill Burke" <bburke at redhat.com>
> To: "Stian Thorgersen" <stian at redhat.com>
> Cc: keycloak-dev at lists.jboss.org
> Sent: Thursday, 14 November, 2013 3:26:12 PM
> Subject: Re: Admin console
> 
> Yes.
> 
> We need a way to:
> 
> * re-generate realm's key pair
> * Need to fix "default roles" based on our previous discussions.

Already merged thanks to Villiam - and looking much better than before btw ;)

> * We need a way on the admin console to change a user's account status
> i.e. password reset or totp reset/removal, etc...
> * User's account status needs to change if the required credentials is
> changed to add an additional mechanism.  i.e. adding TOTP as a requirement.

At the moment when a user tries to log in we check if totp is required by realm and not configured for user, and if it is we add a required action at that point. We also check email verification.

I guess we could quite easily add required actions to all users to configure totp and verify email if those settings are changed in the realm. Is that a M1 priority though?

> * We need a "Installation" screen on the application page that shows a
> sample .json config file

realm, resource, realm-public-key, auth-url, code-url, ssl-not-required, credentials (with password: 'INSERT-PASSWORD') - anything else?

At the moment the realm id is just to lookup the realm (so it's something like /realms/4-1384442411866/..). Would it not be better to simply use the name, and require that the name is unique?

> * There's a bunch of other stuff in JIRA

I'll go through jira and see what's related to admin console

> * They should run through the admin console and see what little things
> don't work and fix them.
> 
> I also want to have a discussion on "device management".  A feature I
> want to add down the road that I have some ideas on.
> 
> On 11/14/2013 8:45 AM, Stian Thorgersen wrote:
> > Alexandre and Villiam are both nearly finished with the tasks they had on
> > the admin console. Do you have anything else they can work on?
> >
> 
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
>

More information about the keycloak-dev mailing list