[undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client protocol support?
Bill Burke
bburke at redhat.com
Mon May 12 18:42:35 EDT 2014
Keycloak is an extension of OAuth/OpenID Connect. Looking at pac4j
further, it looks like it would fit under the OAuth adapter.
On 5/12/2014 1:28 PM, Jérôme LELEU wrote:
> Hi,
>
> I'm the creator of pac4j and we would be happy to receive a new
> contribution.
>
> I don't know Keycloak, but the only "constraint" is that it respects
> more or less the general flow : redirect the user to the provider,
> authentication, be redirected back to the application, retrieve the user
> profile...
>
> The main advantage of integrating Keycloak into pac4j is that it would
> become available subsequently in:
> - any J2E application
> - any Shiro application
> - any Spring Security application
> - any Play application
> - the CAS server
> - any Ratpack application
> - any Vertx application (soon I hope)
> - any Undertow application (soon I hope).
>
> Open a discussion on the pac4j-dev mailing list:
> https://groups.google.com/forum/?fromgroups#!forum/pac4j-dev
> <https://groups.google.com/forum/?fromgroups#%21forum/pac4j-dev> or send
> a pull request to: https://github.com/leleuj/pac4j...
>
> Thanks.
> Best regards,
> Jérôme
>
>
>
>
> ---------- Message transféré ----------
> De : "Bill Burke" <bburke at redhat.com <mailto:bburke at redhat.com>>
> Date : 12 mai 2014 17:39
> Objet : Re: [undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client
> protocol support?
> À : <undertow-dev at lists.jboss.org <mailto:undertow-dev at lists.jboss.org>>
> Cc :
>
> If I wrote a pac4j module for Keycloak [1], it could be accepted and
> distributed with pac4j?
>
> [1] http://keycloak.org
>
>
> On 5/12/2014 11:32 AM, Michaël REMOND wrote:
> > Hi,
> >
> > I currently contribute to a Java library from Jerome Leleu, able to
> > protect applications and delegate authentications to various identity
> > providers. It currently supports 5 different protocols: CAS, OAuth,
> > OpenID, HTTP and SAML and 18 identity providers (Facebook, Twitter,
> > Google, Yahoo...) through a very simple and unified API accross
> > protocols/JVM frameworks: https://github.com/leleuj/pac4j.
> >
> > The pac4j librairies are used in various JVM frameworks with the
> > appropriate implementations: Spring Security, Shiro, CAS, J2E and
> Play.
> > Although the core pac4j librairies gathers "a lot of" code (300
> classes,
> > 26000 lines of source code), the implementations to specific JVM
> > frameworks are pretty straigtforward: from 4 classes for Spring
> Security
> > to 11 classes for Play Framework 2.x.
> >
> > We are currently targeting new plateforms and especially async
> one; we
> > got an implementation from ratpack (http://www.ratpack.io/) and we
> > discussed also with the guys from vert.x. They gave us some ideas in
> > order to improve our library by becoming more "reactive".
> >
> > I think that pac4j could be helpful for the Undertow community too by
> > bringing client multi-protocols support.
> >
> > I looked at the security model from Undertow and I start to think
> about
> > a possible integration by developing a
> "Pac4jAuthenticationMechanism".
> >
> > What do you think about such development? Are you interested in a
> demo
> > app showing how this could work? Do you have suggestions?
> >
> > Thanks.
> > Best regards,
> > Michael Remond
> >
> >
> > _______________________________________________
> > undertow-dev mailing list
> > undertow-dev at lists.jboss.org <mailto:undertow-dev at lists.jboss.org>
> > https://lists.jboss.org/mailman/listinfo/undertow-dev
> >
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> undertow-dev mailing list
> undertow-dev at lists.jboss.org <mailto:undertow-dev at lists.jboss.org>
> https://lists.jboss.org/mailman/listinfo/undertow-dev
>
>
>
>
> _______________________________________________
> undertow-dev mailing list
> undertow-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/undertow-dev
>
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
More information about the undertow-dev
mailing list