<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">Keycloak is OOTB server, which
redirects you to login screen on Keycloak server side and handles
authentication for you. If you want to authenticate to Keycloak
with LDAP users, you can already do that. You can create LDAP
federation provider in Keycloak admin console and you're done. See
the docs:
<a class="moz-txt-link-freetext" href="http://keycloak.github.io/docs/userguide/html/user_federation.html">http://keycloak.github.io/docs/userguide/html/user_federation.html</a><br>
<br>
However for Picketlink JPA IDM, we don't have any migration right
now. AFAIK we plan to add support for Picketlink federation
provider into Keycloak, which will allow to migrate users from any
picketlink identity store (JPA, File, LDAP and others) and use
them in Keycloak.<br>
<br>
Marek<br>
<br>
<br>
On 27/09/15 00:13, Arthur Gregório wrote:<br>
</div>
<blockquote
cite="mid:CA+UvXkJEG066nvQY7HRY6EywwQyvBcPWt=BZ-31_ZiHLxHJczQ@mail.gmail.com"
type="cite">
<div dir="ltr">i'm using JPA IDM mixed with LDAP authentication,
but keyclok seems very different from what picktlink is...
<div><br>
</div>
<div>Any idea when docs will be updated to guide users who want
migrate from PL do KC, since both will become one and PL is
abandoned since 2.7.x release.</div>
<div><br>
</div>
<div>Something that will be annoying is having to use an
structure as the KC uses to do things that the PL does .. That
is, from what little I've seen so far, things will become more
complex for applications who just want a identity manager and
authorizations.</div>
<div><br>
</div>
<div>Like my opensource project, webBudget (<a
moz-do-not-send="true"
href="http://github.com/arthurgregorio/web-budget">github.com/arthurgregorio/web-budget</a>)
that uses PL</div>
</div>
<div class="gmail_extra"><br clear="all">
<div>
<div class="gmail_signature"><b>Arthur P. Gregório</b><br>
<i>+55 45 9958-0302</i><br>
@gregorioarthur<br>
<a moz-do-not-send="true"
href="http://www.arthurgregorio.eti.br" target="_blank">www.arthurgregorio.eti.br</a><br>
</div>
</div>
<br>
<div class="gmail_quote">2015-09-25 18:35 GMT-03:00 Bill Burke <span
dir="ltr"><<a moz-do-not-send="true"
href="mailto:bburke@redhat.com" target="_blank">bburke@redhat.com</a>></span>:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">Depends
what features you use in Picketlink. Keycloak, right now is
an<br>
IDP auth server that supports SAML 2.0 and OpenID Connect.
We also have<br>
client adapters that use a small extension to OpenID Connect
as our<br>
protocol. What's in the works?<br>
<br>
* A SAML 2.0 client adapter if you are connecting to IDPs
other than<br>
Keycloak<br>
<br>
This should be in 1.6.<br>
<span class=""><br>
On 9/25/2015 9:46 AM, Arthur Gregório wrote:<br>
> Hi!<br>
><br>
> I already have a system running with picketlink,
everything works normally.<br>
><br>
> However, with the merge of the two projects, I wonder
if I can ever move<br>
> to keycloak, if already have a migration guide, or
how to proceed?<br>
><br>
> at.,<br>
><br>
</span>> *Arthur P. Gregório*<br>
> /<a moz-do-not-send="true"
href="tel:%2B55%2045%209958-0302" value="+554599580302">+55
45 9958-0302</a>/<br>
> @gregorioarthur<br>
> <a moz-do-not-send="true"
href="http://www.arthurgregorio.eti.br" rel="noreferrer"
target="_blank">www.arthurgregorio.eti.br</a> <<a
moz-do-not-send="true"
href="http://www.arthurgregorio.eti.br" rel="noreferrer"
target="_blank"><a class="moz-txt-link-freetext" href="http://www.arthurgregorio.eti.br">http://www.arthurgregorio.eti.br</a></a>><br>
><br>
><br>
> _______________________________________________<br>
> keycloak-dev mailing list<br>
> <a moz-do-not-send="true"
href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
> <a moz-do-not-send="true"
href="https://lists.jboss.org/mailman/listinfo/keycloak-dev"
rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br>
><br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
Bill Burke<br>
JBoss, a division of Red Hat<br>
<a moz-do-not-send="true"
href="http://bill.burkecentral.com" rel="noreferrer"
target="_blank">http://bill.burkecentral.com</a><br>
_______________________________________________<br>
keycloak-dev mailing list<br>
<a moz-do-not-send="true"
href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
<a moz-do-not-send="true"
href="https://lists.jboss.org/mailman/listinfo/keycloak-dev"
rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br>
</font></span></blockquote>
</div>
<br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
keycloak-dev mailing list
<a class="moz-txt-link-abbreviated" href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a>
<a class="moz-txt-link-freetext" href="https://lists.jboss.org/mailman/listinfo/keycloak-dev">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a></pre>
</blockquote>
<br>
</body>
</html>