[undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client protocol support?

Bill Burke bburke at redhat.com
Mon May 12 18:42:35 EDT 2014 

Keycloak is an extension of OAuth/OpenID Connect.  Looking at pac4j 
further, it looks like it would fit under the OAuth adapter.

On 5/12/2014 1:28 PM, Jérôme LELEU wrote:
> Hi,
>
> I'm the creator of pac4j and we would be happy to receive a new
> contribution.
>
> I don't know Keycloak, but the only "constraint" is that it respects
> more or less the general flow : redirect the user to the provider,
> authentication, be redirected back to the application, retrieve the user
> profile...
>
> The main advantage of integrating Keycloak into pac4j is that it would
> become available subsequently in:
> - any J2E application
> - any Shiro application
> - any Spring Security application
> - any Play application
> - the CAS server
> - any Ratpack application
> - any Vertx application (soon I hope)
> - any Undertow application (soon I hope).
>
> Open a discussion on the pac4j-dev mailing list:
> https://groups.google.com/forum/?fromgroups#!forum/pac4j-dev
> <https://groups.google.com/forum/?fromgroups#%21forum/pac4j-dev> or send
> a pull request to: https://github.com/leleuj/pac4j...
>
> Thanks.
> Best regards,
> Jérôme
>
>
>
>
>     ---------- Message transféré ----------
>     De : "Bill Burke" <bburke at redhat.com <mailto:bburke at redhat.com>>
>     Date : 12 mai 2014 17:39
>     Objet : Re: [undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client
>     protocol support?
>     À : <undertow-dev at lists.jboss.org <mailto:undertow-dev at lists.jboss.org>>
>     Cc :
>
>     If I wrote a pac4j module for Keycloak [1], it could be accepted and
>     distributed with pac4j?
>
>     [1] http://keycloak.org
>
>
>     On 5/12/2014 11:32 AM, Michaël REMOND wrote:
>      > Hi,
>      >
>      > I currently contribute to a Java library from Jerome Leleu, able to
>      > protect applications and delegate authentications to various identity
>      > providers. It currently supports 5 different protocols: CAS, OAuth,
>      > OpenID, HTTP and SAML and 18 identity providers (Facebook, Twitter,
>      > Google, Yahoo...) through a very simple and unified API accross
>      > protocols/JVM frameworks: https://github.com/leleuj/pac4j.
>      >
>      > The pac4j librairies are used in various JVM frameworks with the
>      > appropriate implementations: Spring Security, Shiro, CAS, J2E and
>     Play.
>      > Although the core pac4j librairies gathers "a lot of" code (300
>     classes,
>      > 26000 lines of source code), the implementations to specific JVM
>      > frameworks are pretty straigtforward: from 4 classes for Spring
>     Security
>      > to 11 classes for Play Framework 2.x.
>      >
>      > We are currently targeting new plateforms and especially async
>     one; we
>      > got an implementation from ratpack (http://www.ratpack.io/) and we
>      > discussed also with the guys from vert.x. They gave us some ideas in
>      > order to improve our library by becoming more "reactive".
>      >
>      > I think that pac4j could be helpful for the Undertow community too by
>      > bringing client multi-protocols support.
>      >
>      > I looked at the security model from Undertow and I start to think
>     about
>      > a possible integration by developing a
>     "Pac4jAuthenticationMechanism".
>      >
>      > What do you think about such development? Are you interested in a
>     demo
>      > app showing how this could work? Do you have suggestions?
>      >
>      > Thanks.
>      > Best regards,
>      > Michael Remond
>      >
>      >
>      > _______________________________________________
>      > undertow-dev mailing list
>      > undertow-dev at lists.jboss.org <mailto:undertow-dev at lists.jboss.org>
>      > https://lists.jboss.org/mailman/listinfo/undertow-dev
>      >
>
>     --
>     Bill Burke
>     JBoss, a division of Red Hat
>     http://bill.burkecentral.com
>     _______________________________________________
>     undertow-dev mailing list
>     undertow-dev at lists.jboss.org <mailto:undertow-dev at lists.jboss.org>
>     https://lists.jboss.org/mailman/listinfo/undertow-dev
>
>
>
>
> _______________________________________________
> undertow-dev mailing list
> undertow-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/undertow-dev
>

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com

More information about the undertow-dev mailing list