[keycloak-user] Only Allowing Access To Master Realm From Internal Network

Bill Burke bburke at redhat.com
Fri Sep 11 11:06:31 EDT 2015



On 9/11/2015 11:03 AM, Stian Thorgersen wrote:
>
>
> ----- Original Message -----
>> From: "Bill Burke" <bburke at redhat.com>
>> To: keycloak-user at lists.jboss.org
>> Sent: Friday, 11 September, 2015 5:00:24 PM
>> Subject: Re: [keycloak-user] Only Allowing Access To Master Realm From Internal Network
>>
>> Kenyatta, does that work for you?  URL patterns are:
>>
>> /auth/realms/{realm}/*  this is all protocol entry points.  Through your
>> proxy, control which realms can receive SSO requests by filtering out
>> things by realm name aka {realm}
>>
>> /auth/admin/* All admin consoles and admin REST endpoints
>
> Do we not also have the realm specific admin console entry points?
>

Yup:

/auth/admin/{realm}/console for per realm admin console UI
/auth/admin/realms/{realm} for per realm admin REST API


-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com


More information about the keycloak-user mailing list