<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On 22 February 2016 at 03:55, Sylvain Auger-Léger <span dir="ltr"><<a href="mailto:tyvain@gmail.com" target="_blank">tyvain@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Hi,<div><br></div><div>My company is aiming at building its own OpenId Connect provider, for our internal apps.</div><div>Thus we are looking for an open source framework. KeyCloak seems very good.</div></div></blockquote><div><br></div><div>FIY Keycloak is an out of the box authentication server, with support for OpenID Connect. There's some support for customizing it if required, but it's not a framework to build your own OpenID Connect provider.</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div><br></div><div>Unfortunatly, we have a problem, and I did not find if KeyCloak can solve it:</div><div><br></div><div>Our 'users' are store in an AD directory or in a database (postgree).</div><div>To sum up: if the user is not in the AD, then we should look in the databse .</div><div><br></div><div>Is this doable with Keylcloak??</div><div><br></div><div>Thanks.</div></div>
<br>_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br></blockquote></div><br></div></div>