[keycloak-user] Questions about OpenID Connect Identity Provider

Schuster Sebastian (INST/ESY1) Sebastian.Schuster at bosch-si.com
Thu Jun 1 02:25:00 EDT 2017


Hi Marcus,

Both should be possible. For 1) have a look at https://keycloak.gitbooks.io/documentation/content/server_admin/topics/identity-broker/default-provider.html
and for 2) look at https://keycloak.gitbooks.io/documentation/content/server_admin/topics/identity-broker/suggested.html

Best regards,
Sebastian

Mit freundlichen Grüßen / Best regards

 Sebastian Schuster

Engineering and Support (INST/ESY1) 
Bosch Software Innovations GmbH | Schöneberger Ufer 89-91 | 10785 Berlin | GERMANY | www.bosch-si.com
Tel. +49 30 726112-485 | Fax +49 30 726112-100 | Sebastian.Schuster at bosch-si.com

Sitz: Berlin, Registergericht: Amtsgericht Charlottenburg; HRB 148411 B 
Geschäftsführung: Dr.-Ing. Rainer Kallenbach, Michael Hahn 




> -----Original Message-----
> From: keycloak-user-bounces at lists.jboss.org [mailto:keycloak-user-
> bounces at lists.jboss.org] On Behalf Of Christie, Marcus Aaron
> Sent: Mittwoch, 31. Mai 2017 21:19
> To: keycloak-user at lists.jboss.org
> Subject: [keycloak-user] Questions about OpenID Connect Identity Provider
> 
> Hello,
> 
> I have two questions about Identity Provider configuration in Keycloak.
> 
> 1) I would like to add an Identity Provider and then have this be the only option
> available to the user for authentication.  Is there a way to disable the
> username/password authentication and not show it on the login screen?
> 
> 2) Is there a way to redirect to Keycloak and have it immediately redirect to an
> Identity Provider?  As an example, let’s say I have two Identity Providers, Google
> and Facebook.  In my web application I know that the user wants to log in via
> Google so I want to redirect to Keycloak and tell Keycloak to select the Google
> Identity Provider and redirect to it immediately.  Maybe something like my web
> application redirects to keycloak like so:
> 
> https://mykeycloak.org/auth/realms/myrealm/protocol/openid-
> connect/auth?response_type=code&client_id=...&redirect_uri=...&scope=openid&s
> elected_identity_provider=google
> 
> and then mykeycloak.org<http://mykeycloak.org> immediately redirects to
> Google.  For the user they don’t see the Keycloak page.
> 
> Is there any functionality like the in Keycloak?
> 
> 
> Thanks,
> 
> Marcus
> 
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user



More information about the keycloak-user mailing list