I need more time on the refactoring of login actions. So far I've
refactored all the code to
* create a ClientSession when login page is visited
* Pass around a "client session code" as a query parameter that
references the client session
* Store state within the client session instead of in query and form
parameters
* Refactor Social login to use a client session. This allowed me to
remove the "KEYCLOAK_SOCIAL" cookie.
I have all this building correctly.
Next steps are to create a "protocol adapter" interface and have all
login actions use this adapter instead of being hardcoded to oauth. I
probably won't get this done until late next week. After that I'll
start on SAML and the "protocol adapter" interface will probably go
through another iteration.
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com