September 2014 - keycloak-dev - Jboss List Archives

by Bill Burke

What is the purpose of UserSession.getAuthMethod()? What does it mean? I need something similar, but it needs to be tied to the ClientSession. -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

10 years

2
1
0 / 0

sticky sessions for UserSession

by Bill Burke

Was thinking about clustering. Sticky sessions combined with in-memory only UserSessions might be best for clustering. We'll need to change access code processing so that it is a) signed and b) contains the callback URL. In looking at SAML, it jsut seems we need to have the notion of an HttpSession and the idea of loading this session from a database (or even a clustered cache) doesn't seem very feasible or scalable. -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

10 years

3
5
0 / 0

Keycloak 1.0.1.Final finally in Maven Central

by Stian Thorgersen

Keycloak 1.0.1.Final is finally in Maven Central. I forgot to mark it as released in JBoss Nexus, which is why it never synced to Central. Sorry for any inconvenience, Stian

10 years

1
0
0 / 0

keycloak-server.json

by Stan Silvert

Is there any updated doco on keycloak-server.json? I need to know all the options and their possible values. All I can find is this, but it's incomplete: https://github.com/keycloak/keycloak/wiki/keycloak-server.json-options Stan

10 years

2
3
0 / 0

Keycloak 1.0.1 Final Released

by Stian Thorgersen

We’re releasing a few minor fixes and improvements before we start work on SAML and Clustering. For the complete list of fixes and improvements go to https://issues.jboss.org/issues/?jql=project%20%3D%20KEYCLOAK%20AND%20fix...

10 years

2
1
0 / 0

Re: [keycloak-dev] [aerogear-dev] Keycloak Ionic / Cordova theme

by Stian Thorgersen

This raises the question. Should we allow overriding the theme on an per-application basis? It would allow a better integration with the app, but on the other side does it even make sense to login to a SSO realm that way? ----- Original Message ----- > From: "Erik Jan de Wit" <edewit(a)redhat.com> > To: "AeroGear Developer Mailing List" <aerogear-dev(a)lists.jboss.org> > Cc: keycloak-dev(a)lists.jboss.org > Sent: Friday, 19 September, 2014 8:08:02 AM > Subject: Re: [aerogear-dev] Keycloak Ionic / Cordova theme > > Looks very nice, will this integrate well with the work that Summers did? > > On 18 Sep,2014, at 20:19 , Lukáš Fryč < lukas.fryc(a)gmail.com > wrote: > > > > > Yeah and off course, the source is here: > > https://github.com/lfryc/keycloak/tree/ionic-styling > > On Thu, Sep 18, 2014 at 8:14 PM, Lukáš Fryč < lukas.fryc(a)gmail.com > wrote: > > > > Hey guys, > > I've started some work on a theme for Keycloak that would include Ionic > Framework styling. > > This makes sure that Ionic/Cordova demos that includes Keycloak has smooth > transition between application and login process / registration. > > See attached screenshots. > > It's still in early prototypal stage, so just just login, registration and > social (only google) fully works so far, but others can be simply expanded. > > Feel free to use it in demos or so... ;-) > > > Cheers, > > ~ Lukas > > _______________________________________________ > aerogear-dev mailing list > aerogear-dev(a)lists.jboss.org > https://lists.jboss.org/mailman/listinfo/aerogear-dev > > > _______________________________________________ > aerogear-dev mailing list > aerogear-dev(a)lists.jboss.org > https://lists.jboss.org/mailman/listinfo/aerogear-dev

10 years

7
14
0 / 0

1.0.2 release for security bug

by Bill Burke

https://issues.jboss.org/browse/KEYCLOAK-705 See any problem with doing a release for that? I'll do that today if you agree. -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

10 years, 1 month

3
3
0 / 0

security vulnerabilites documented please review

by Bill Burke

I created a security vulnerabilities chapter in our documentation. Please review to see if I forgot anything. Thanks, Bill -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com

10 years, 1 month

1
0
0 / 0

Clarification on Access Token and Refresh Token

by Bappaditya Gorai (bgorai)

Hi Keycloak Dev Team, First of all congrats to you guys with your 1.0 Final release. We have an application configured in Keycloack as public client, which is accessed using a java client (httpclient). However we don't see access_token coming out of Resource server. So for the next call to Resource server, my client need to repeat authorization steps all over again (If we don't maintain session in client side , which is our requirement) . I understand for web client (web browser) session id is used by keycloak adapter to establish the authenticity of the client for consecutive resource access calls. 1. Is there any way to get the access_token in resource server response (may be as a cookie ) as resource server adapter is doing "code to token" ? So that successive call to resource server we can send the access_token . 2. Actually in my setup Resource Server/Application is behind load balancer. So session id may not be valid for different node. Is there any way to configure application/resource server so that a) Client can get back the access token. b) Refresh can also happen automatically. 3. As per my understanding, currently keycloak stores access token /refresh token etc in server http session. If there is way to persist access token /refresh token etc in data store so that a. Inactivity/session will not clear these data. (Can provide longevity) b. Resource Servers can use load balancer setup. Thanks Bappaditya Gorai

10 years, 1 month

2
1
0 / 0

Keycloak Ionic / Cordova theme

by Lukáš Fryč

Hey guys, I've started some work on a theme for Keycloak that would include Ionic Framework styling. This makes sure that Ionic/Cordova demos that includes Keycloak has smooth transition between application and login process / registration. See attached screenshots. It's still in early prototypal stage, so just just login, registration and social (only google) fully works so far, but others can be simply expanded. Feel free to use it in demos or so... ;-) Cheers, ~ Lukas

10 years, 1 month

3
3
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

keycloak-dev September 2014