[keycloak-user] How to secure JAX-RS service based on reasteasy running on undertow

[Davide Ungari]

Hi Marek,
I worked on it during the weekend.

Now my problem is the header like: Authorization: Bearer
<your_access_token> .

I'm running the frontend on Tomcat, I made an adapter for it
https://github.com/ungarida/keycloak/, I adapted AS7.

Now I can not figure out how to retrieve the access token to include it in
the JS that call the JAX-RS service.



--
Davide


On Mon, Apr 14, 2014 at 8:44 AM, Marek Posolda <mposolda at redhat.com> wrote:

>  Hi Davide,
>
> I think that this exactly is already addressed by our examples. You can
> take a look especially at this example
> https://github.com/keycloak/keycloak/tree/master/examples/demo-template/database-servicewhich is JAX-RS service service based on resteasy, which requires Bearer
> token authentication, so all requests sent to it from "frontend"
> applications like "customer-portal" or "product-portal" need to contain
> header like: Authorization: Bearer <your_access_token> .
>
> You can try existing set of examples to see how it all works together. See
> instructions in README files under
> https://github.com/keycloak/keycloak/tree/master/examples/demo-template
>
> Marek
>
>
> On 12.4.2014 10:58, Davide Ungari wrote:
>
> Hi everybody,
> I configured keycloak with mongodb,
> then I secured frontend on Tomcat making an adapter.
>
>  I need to secure backend, it is an JAX-RS service based on resteasy and
> running on undertow.
>
>  I do not use EJB so I need some help to figure out the best way to
> implement security with keycloak in my scenario.
>
>  Suggestions?
>
>  --
> Davide
>
>
> _______________________________________________
> keycloak-user mailing listkeycloak-user at lists.jboss.orghttps://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20140414/43d5c262/attachment-0001.html