<div dir="ltr">+1 This is very nice<div><br></div><div>We can't accept this for 1.9.x, but would love to include it in 2.0 if you can complete the work. We'll create a branch for 1.9.x very soon, once that's done we can start accepting PRs for 2.0.</div><div><br></div><div>Would be great if you carry on work on this feature and do a PR. We'd need tests as well as documentation, it would also be good with some examples.</div><div><br></div><div>BTW could you give us some step-by-step instructions on how to try it out? I'm to lazy/busy to figure it out on my own.</div></div><div class="gmail_extra"><br><div class="gmail_quote">On 10 February 2016 at 06:12, Bill Burke <span dir="ltr"><<a href="mailto:bburke@redhat.com" target="_blank">bburke@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000">
This is really cool.<div><div class="h5"><br>
<br>
<div>On 2/9/2016 5:48 PM, Thomas Darimont
wrote:<br>
</div>
</div></div><blockquote type="cite"><div><div class="h5">
<div dir="ltr">Hello group,
<div><br>
</div>
<div>I built a little prototype [0] for script based
authenticators inspired by a discussion on the keycloak-users
mailing list - </div>
<div>think it was about post broker authentication checks, e.g.
if the user has an email address that belongs to the google
apps domain...</div>
<div><br>
</div>
<div>
<div>I introduced a ScriptBasedAuthenticator that is
bootstraped via a</div>
<div>ScriptBasedAuthenticatorFactory can be execute a
configured script</div>
<div>via a JSR-223 ScriptEngine against a provided execution
context.</div>
<div><br>
</div>
<div>I also added a new "script" value type for proper
rendering in the UI as well as an alias property </div>
<div>to the AuthFlowExecutionRepresentation in order to be
able to differentiate multiple instances of an Authenticator</div>
<div>within the same AuthFlow - this comes pretty close to
having Auth0 like scriptable rules in Keycloak.</div>
<div><br>
</div>
<div>For convenient editing I added the AngularJS bindings for
the popular ACE editor.</div>
</div>
<div><br>
</div>
<div>Looking forward to your thoughts :)</div>
<div><br>
</div>
<div>Cheers,</div>
<div>Thomas</div>
<div><br>
</div>
<div>[0] <a href="https://github.com/thomasdarimont/keycloak/commit/3f39479e7fa0c75941cd524ba99de5c85db43b62" target="_blank">https://github.com/thomasdarimont/keycloak/commit/3f39479e7fa0c75941cd524ba99de5c85db43b62</a></div>
<div>[1] <a href="https://auth0.com/docs/rules" target="_blank">https://auth0.com/docs/rules</a></div>
</div>
<br>
<fieldset></fieldset>
<br>
</div></div><pre>_______________________________________________
keycloak-dev mailing list
<a href="mailto:keycloak-dev@lists.jboss.org" target="_blank">keycloak-dev@lists.jboss.org</a>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a></pre><span class="HOEnZb"><font color="#888888">
</font></span></blockquote><span class="HOEnZb"><font color="#888888">
<br>
<pre cols="72">--
Bill Burke
JBoss, a division of Red Hat
<a href="http://bill.burkecentral.com" target="_blank">http://bill.burkecentral.com</a></pre>
</font></span></div>
<br>_______________________________________________<br>
keycloak-dev mailing list<br>
<a href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br></blockquote></div><br></div>