[keycloak-user] How touser Servlet OAuth Client

Marek Posolda mposolda at redhat.com
Tue Apr 21 12:12:52 EDT 2015


You can take a look at our examples for how to use ServletOAuthClient. 
Hopefully it could help with your usecase:
https://github.com/keycloak/keycloak/tree/master/examples/demo-template/third-party
https://github.com/keycloak/keycloak/tree/master/examples/demo-template/third-party-cdi

Marek

On 21.4.2015 12:14, Jérôme Blanchard wrote:
> Hi all,
>
> I'm trying to protect a servlet application which can be accessed 
> either as anonymous user and as authenticated user. Some resources are 
> protected and my application takes in charge the access control (not 
> role based) so I can't use the war protection using role user constraint.
> In this case I've removed the role constraint in the web.xml and the 
> keycloak wildfly (undertow) adapter let me access the application as 
> unauthentified user (anonymous) which is perfect.
> What I want to handle on some AccessDeniedException is to redirect the 
> user to the authentication server manually. In this case, user 
> authentified an come back to the protected URL but is no more 
> anonymous but a authentified user.
> Is ther is a way to handle this redirection to the authentication 
> server manually (I don't know where to store the state variable 
> allowing keycloak wildfly adapter to handle properly the auth redirect 
> that include the code).
>
> Best regards, Jérôme.
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20150421/9a05aff8/attachment.html 


More information about the keycloak-user mailing list