[keycloak-user] Integrate the Keycloak Login view in my own html with iframe
Stian Thorgersen
stian at redhat.com
Mon Feb 23 07:45:46 EST 2015
We don't support using an iframe as it opens potential exploits (clickjacking, csrf, xss).
If you are willing to accept the risk of these, or can mitigate them yourself, you can implement this flow yourself in your application. Basically create a "login" and callback pages on your app. The login page would redirect to Keycloak login page, Keycloak would then redirect back to the callback page which is used to send the token to the main window using window.postMessage.
----- Original Message -----
> From: "Christoph Machnik" <christoph.machnik at traveltainment.de>
> To: keycloak-user at lists.jboss.org
> Sent: Monday, February 9, 2015 10:58:14 AM
> Subject: [keycloak-user] Integrate the Keycloak Login view in my own html with iframe
>
> Hi all,
>
> I have a html-frontend and i want to show the loginpage from keycloak as a
> part of this frontend and not redirect to the loginpage. Is there a
> possibility to do this ?
> My first thougt was an iframe, but what is the src for this ?
>
> <div id="body">
> <div id="content">
> <div id="infoBox"></div>
> <div class="verticalSpace"></div>
> <div id="LoginView">
> <iframe src=" [Keycloak login view] "></iframe>
> </div>
> </div>
> </div>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list