[keycloak-user] Authenticate user without using login page
Rodrigo Sasaki
rodrigopsasaki at gmail.com
Thu Jul 17 13:52:08 EDT 2014
You think there could be a way to do this within keycloak itself?
On Wed, Jul 16, 2014 at 4:41 PM, Rodrigo Sasaki <rodrigopsasaki at gmail.com>
wrote:
> I'll give you an example:
>
> We have a situation in our website where we only ask for the user's
> e-mail, and he can go on with the flow.
>
> On a determined step of the flow, if we identify that this is an e-mail
> that we already have in our user database, we ask him for his password,
> authenticate him, and let him go on, if this e-mail is new, we redirect him
> to a page where he can register himself, and after that continue on.
>
> On this specific case and others, we wouldn't like to have to redirect him
> to keycloak, because that would interrupt the flow that we designed.
>
>
> On Wed, Jul 16, 2014 at 4:39 PM, Bill Burke <bburke at redhat.com> wrote:
>
>> http://docs.jboss.org/keycloak/docs/1.0-beta-3/
>> userguide/html/direct-access-grants.html
>>
>> If you have to do it this way, please let us know why. Maybe we can
>> solve the issue within keycloak itself.
>>
>>
>> On 7/16/2014 3:35 PM, Rodrigo Sasaki wrote:
>>
>>> Just for the sake of conversation, if I did want to handle my own login
>>> page, would there be a way for me to do it?
>>>
>>>
>>> On Tue, Jul 15, 2014 at 2:35 PM, Rodrigo Sasaki
>>> <rodrigopsasaki at gmail.com <mailto:rodrigopsasaki at gmail.com>> wrote:
>>>
>>> I don't want to miss out on all of that, which is why we're mostly
>>> migrating everything to use keycloak that way.
>>>
>>> It's just that we have cases that are so specific, that it would be
>>> better to authenticate the user in a different manner, create the
>>> user session and everything, without redirecting.
>>>
>>> I'll have a look at that code. Thanks!
>>>
>>>
>>> On Tue, Jul 15, 2014 at 2:19 PM, Bill Burke <bburke at redhat.com
>>> <mailto:bburke at redhat.com>> wrote:
>>>
>>> If you want to handle your own login pages, IMO, you are missing
>>> out on
>>> a lot of Keycloak features. Specifically:
>>>
>>> * SSO
>>> * forgot password
>>> * admin forced credential reset/setup
>>>
>>>
>>> Login pages can be styled however you like to look like your
>>> application.
>>>
>>> There is a REST api for obtaining an access token. Here is an
>>> example:
>>>
>>> https://github.com/keycloak/keycloak/blob/master/examples/
>>> demo-template/admin-access-app/src/main/java/org/
>>> keycloak/example/AdminClient.java
>>>
>>> On 7/15/2014 12:36 PM, Rodrigo Sasaki wrote:
>>> > Is there a way to authenticate the user without having to
>>> input username
>>> > and password on the login page?
>>> >
>>> > For example:
>>> >
>>> > Say there's a situation in my application where I request the
>>> user for
>>> > his username and password, and I wouldn't like to redirect
>>> that to the
>>> > keycloak login page to authenticate him, would there be a way
>>> for me to
>>> > do that?
>>> >
>>> > --
>>> > Rodrigo Sasaki
>>> >
>>> >
>>> > _______________________________________________
>>> > keycloak-user mailing list
>>> > keycloak-user at lists.jboss.org
>>> <mailto:keycloak-user at lists.jboss.org>
>>>
>>> > https://lists.jboss.org/mailman/listinfo/keycloak-user
>>> >
>>>
>>> --
>>> Bill Burke
>>> JBoss, a division of Red Hat
>>> http://bill.burkecentral.com
>>> _______________________________________________
>>> keycloak-user mailing list
>>> keycloak-user at lists.jboss.org <mailto:keycloak-user at lists.
>>> jboss.org>
>>>
>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>
>>>
>>>
>>>
>>> --
>>> Rodrigo Sasaki
>>>
>>>
>>>
>>>
>>> --
>>> Rodrigo Sasaki
>>>
>>
>> --
>> Bill Burke
>> JBoss, a division of Red Hat
>> http://bill.burkecentral.com
>>
>
>
>
> --
> Rodrigo Sasaki
>
--
Rodrigo Sasaki
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20140717/148970af/attachment.html
More information about the keycloak-user
mailing list