Could we have a hook into application code to determine if a resource should be protected by Keycloak? Maybe an event handler?<div><br></div><div>b<span></span>oolean shouldProtectResourse(HttpServletRequest)<br><div><br>On Friday, April 17, 2015, Scott Rossillo <<a href="mailto:srossillo@smartling.com">srossillo@smartling.com</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">I could work around that for interactive logins, but it wouldn’t work for application to application requests. Do you have any pointers on where I could start to manually trigger the adapter?<div><br></div><div>Do you think it’s a reasonable requirement to have the application determine if the adapter should be triggered? I feel it’s necessary for integration with applications that have to support more than one authentication mechanism.</div><div><br></div><div>Let me know.</div><div><br></div><div>Thanks in advance,</div><div>Scott</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Apr 17, 2015 at 4:46 PM, Bill Burke <span dir="ltr"><<a href="javascript:_e(%7B%7D,'cvml','bburke@redhat.com');" target="_blank">bburke@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Our adapters need a security constraint or they won't be triggered.<br>
<div><div><br>
On 4/17/2015 4:34 PM, Scott Rossillo wrote:<br>
> When using a security mechanism, such as Spring Security, it’s possible<br>
> that multiple security mechanisms are in place or that only parts of an<br>
> application are secured via Keycloak, not a blanket path (e.g. /api/*).<br>
><br>
> What I’m trying to do is use the Spring’s authentication entrypoint to<br>
> direct to Keycloak (this part work somewhat) and have the Keycloak<br>
> adapter pick up from there (not working).<br>
><br>
> What’s the best way to handle this?<br>
><br>
> Thanks,<br>
> Scott<br>
><br>
><br>
><br>
><br>
</div></div>> _______________________________________________<br>
> keycloak-user mailing list<br>
> <a href="javascript:_e(%7B%7D,'cvml','keycloak-user@lists.jboss.org');" target="_blank">keycloak-user@lists.jboss.org</a><br>
> <a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br>
><br>
<span><font color="#888888"><br>
--<br>
Bill Burke<br>
JBoss, a division of Red Hat<br>
<a href="http://bill.burkecentral.com" target="_blank">http://bill.burkecentral.com</a><br>
_______________________________________________<br>
keycloak-user mailing list<br>
<a href="javascript:_e(%7B%7D,'cvml','keycloak-user@lists.jboss.org');" target="_blank">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br>
</font></span></blockquote></div><br></div>
</blockquote></div></div>