[keycloak-user] Spring security adapter for SAML

[Pulkit Gupta]

Hi Jeremy,

I know its been after quite sometime but I only got that project now to
integrate Keycloak with Spring security.
Can you give me a small background or some sample configurations if
required.

I went through the documentation and it seems we have to prepare a long
spring security context file to make it work. Is that correct or we can
just put the adapter in the class path and it will work with keyclaok?

Regards,
Pulkit


On Wed, Oct 26, 2016 at 5:50 PM, Jeremy Simon <jeremy at jeremysimon.com>
wrote:

> Pulkit,
>
> There is a SAML extention for Spring:
> http://projects.spring.io/spring-security-saml/
>
> We're using this on a few applications and it works pretty good.  The
> only drawback, and maybe a later version has overcome this, is that
> backchannel logouts coming from an IDP (in the case of SLO / Global
> Logout) didn't work, since the application side did not store the
> SessionIndex outside of an HttpSession's context (linked to a browser
> cookie).  We just ended up writing our own registry to overcome that.
>
> jeremy
> jeremy at jeremysimon.com
> www.JeremySimon.com
>
>
> On Wed, Oct 19, 2016 at 3:03 AM, Pulkit Gupta <pulgupta at redhat.com> wrote:
> > Hi Team,
> >
> > I have a application with Spring security configured.
> > We are trying to migrate the same to keycloak.
> >
> > Do we have a spring security adapter for keycloak with SAML.
> > I went through the documentation and can see that we have a spring
> adapter
> > but that is for open ID connect.
> >
> > --
> > Thanks,
> > Pulkit
> > AMS
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
>



-- 

PULKIT GUPTA

SENIOR SOFTWARE APPLICATIONS ENGINEER

Red Hat IN IT GBD <https://www.redhat.com/>

Pune - India

pulgupta at redhat.com    T: +91-2066817536
<http://redhatemailsignature-marketing.itos.redhat.com/>     IM: pulgupta
<https://red.ht/sig>