[undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client protocol support?
Jérôme LELEU
leleuj at gmail.com
Mon May 12 13:28:31 EDT 2014
Hi,
I'm the creator of pac4j and we would be happy to receive a new
contribution.
I don't know Keycloak, but the only "constraint" is that it respects more
or less the general flow : redirect the user to the provider,
authentication, be redirected back to the application, retrieve the user
profile...
The main advantage of integrating Keycloak into pac4j is that it would
become available subsequently in:
- any J2E application
- any Shiro application
- any Spring Security application
- any Play application
- the CAS server
- any Ratpack application
- any Vertx application (soon I hope)
- any Undertow application (soon I hope).
Open a discussion on the pac4j-dev mailing list:
https://groups.google.com/forum/?fromgroups#!forum/pac4j-dev or send a pull
request to: https://github.com/leleuj/pac4j...
Thanks.
Best regards,
Jérôme
---------- Message transféré ----------
> De : "Bill Burke" <bburke at redhat.com>
> Date : 12 mai 2014 17:39
> Objet : Re: [undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client
> protocol support?
> À : <undertow-dev at lists.jboss.org>
> Cc :
>
> If I wrote a pac4j module for Keycloak [1], it could be accepted and
> distributed with pac4j?
>
> [1] http://keycloak.org
>
>
> On 5/12/2014 11:32 AM, Michaël REMOND wrote:
> > Hi,
> >
> > I currently contribute to a Java library from Jerome Leleu, able to
> > protect applications and delegate authentications to various identity
> > providers. It currently supports 5 different protocols: CAS, OAuth,
> > OpenID, HTTP and SAML and 18 identity providers (Facebook, Twitter,
> > Google, Yahoo...) through a very simple and unified API accross
> > protocols/JVM frameworks: https://github.com/leleuj/pac4j.
> >
> > The pac4j librairies are used in various JVM frameworks with the
> > appropriate implementations: Spring Security, Shiro, CAS, J2E and Play.
> > Although the core pac4j librairies gathers "a lot of" code (300 classes,
> > 26000 lines of source code), the implementations to specific JVM
> > frameworks are pretty straigtforward: from 4 classes for Spring Security
> > to 11 classes for Play Framework 2.x.
> >
> > We are currently targeting new plateforms and especially async one; we
> > got an implementation from ratpack (http://www.ratpack.io/) and we
> > discussed also with the guys from vert.x. They gave us some ideas in
> > order to improve our library by becoming more "reactive".
> >
> > I think that pac4j could be helpful for the Undertow community too by
> > bringing client multi-protocols support.
> >
> > I looked at the security model from Undertow and I start to think about
> > a possible integration by developing a "Pac4jAuthenticationMechanism".
> >
> > What do you think about such development? Are you interested in a demo
> > app showing how this could work? Do you have suggestions?
> >
> > Thanks.
> > Best regards,
> > Michael Remond
> >
> >
> > _______________________________________________
> > undertow-dev mailing list
> > undertow-dev at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/undertow-dev
> >
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> undertow-dev mailing list
> undertow-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/undertow-dev
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/undertow-dev/attachments/20140512/accb103f/attachment-0001.html
More information about the undertow-dev
mailing list