[keycloak-user] Securing Application which is exposed to Guest Users

Naresh Kumar Reddy pnreddy.svu at gmail.com
Fri Jan 15 20:53:23 EST 2016


Hi,

We have two applications which provides webinar functionality.

1) Provisioning app-- Organizers provision webinar and manage their
account. Since organizers are Keycloak users, I can secure provisioning app
out of the box.

2) Webinar app-- The users of this app are organizers and participants.
Participants are no more provisioned as Keycloack users. Those are guest
users.

 My question is how do we secure second app with keyclock?

* Note*: Both apps will be under same realm.

Is there anyway to secure with custom field like webinarId which is passed
as a parameter?

Or something better solution?

Under same realm securing one app with keycloak users and other app with
custom authentication?

Thanks for the great work.


Thanks & Regards
Naresh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160116/c60253aa/attachment.html 


More information about the keycloak-user mailing list