[keycloak-user] Login and credit card

Bruno Oliveira bruno at abstractj.org
Tue Jul 12 01:56:01 EDT 2016 

On 2016-07-12, Stian Thorgersen wrote:
> You don't need to deal with Angular stuff. It's basic FreeMarker templates,
> see:
> https://keycloak.gitbooks.io/server-developer-guide/content/v/2.0/topics/custom-attributes.html
>
> One issue here is that you shouldn't store credit card details unencrypted.
> That would be harder to achieve. You could encrypt it by extending the
> registration form handler, see
> https://keycloak.gitbooks.io/server-developer-guide/content/v/2.0/topics/auth-spi.html.
> I'd also be careful about adding this details to the token and would maybe
> expose it only through userinfo endpoint and make sure only selected
> clients have access to it.

Just in case someone is interested, a nice/short reading[1].

[1] - https://www.pcisecuritystandards.org/pdfs/pci_fs_data_storage.pdf

>
> On 11 July 2016 at 00:29, Hristo Stoyanov <hr.stoyanov at peruncs.com> wrote:
>
> > I am coming to the conclusion that I have to develop sign up page, as I
> > don't want to deal with KC patternfly/angular stuff.
> >
> > /Hristo Stoyanov
> > On Jul 10, 2016 3:24 PM, "Fabricio Milone" <fabricio.milone at shinetech.com>
> > wrote:
> >
> >> Correct me if I am wrong but my best guess is that you can extend the
> >> default login theme with some app specific template. I have added some
> >> extra required fields when a registration process starts and all I had to
> >> do was extend the keycloak theme, creating a new register.ftl file with my
> >> own template. The other option is a new implementation of the
> >> login-update-profile.ftl and make the Review Profile screen required
> >> (always on under your Authentication flow).
> >>
> >> It depens on your requirements really.
> >>
> >> Regards,
> >> Fab
> >>
> >>
> >> On 10 July 2016 at 03:56, Hristo Stoyanov <hr.stoyanov at peruncs.com>
> >> wrote:
> >>
> >>> Many applications would require the user to provide his/her credit card
> >>> upon sign up on a single step/screen. This does not work well with the
> >>> out_of_box KC screen. How do you solve this? Custom login screen?
> >>>
> >>> /Hristo Stoyanov
> >>>
> >>> _______________________________________________
> >>> keycloak-user mailing list
> >>> keycloak-user at lists.jboss.org
> >>> https://lists.jboss.org/mailman/listinfo/keycloak-user
> >>>
> >>
> >>
> >>
> >> --
> >> *Fabricio Milone*
> >> Developer
> >>
> >> *Shine Consulting *
> >>
> >> 30/600 Bourke Street
> >>
> >> Melbourne VIC 3000
> >>
> >> T: 03 8488 9939
> >>
> >> M: 04 3200 4006
> >>
> >>
> >> www.shinetech.com  *a* passion for excellence
> >>
> >
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
> >

> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user


--

abstractj
PGP: 0x84DC9914

More information about the keycloak-user mailing list