Thanks a lot Alistair for the pull request! It was great to collaborate
with you and looking forward for further collaboration. I've started
separate thread "Authentication flows - follow-up tasks and usability
improvements" to receive some feedback around the follow-up tasks
(usability etc).
There are conflicts in the PR, but Jan fixed them and rebased on latest
master. I am looking at some more testing around DB migration based on
feedback from Hynek in the PR. Hope to have this addressed tomorrow and
will try to run all the jenkins pipeline tests afterwards.
The plan is to have PR merged this week, so if anyone has a feedback, I
suggest to be quick :) However we will have time to eventually address
some more issues and feedback after Keycloak 8 release, so you can
eventually wait for the Keycloak 8 release.
Marek
On 08. 11. 19 17:12, Doswald Alistair wrote:
Hello,
I have submitted a pull request to add multi-factor and multi-token authentication to the
keycloak repository:
https://github.com/keycloak/keycloak/pull/6459
This pull request comes after the discussion on this mailing list which resulted in the
design document "Managing multi-factor authentication and Step-up authentication in
Keycloak" (which can be consulted here:
https://github.com/keycloak/keycloak-community/blob/master/design/multi-f...).
Note that this pull request only covers the multi-factor and multi-token parts of the
design. The setup-up authentication will be done at a later date.
The associated JIRAs are:
-
https://issues.jboss.org/browse/KEYCLOAK-11745
-
https://issues.jboss.org/browse/KEYCLOAK-9693
-
https://issues.jboss.org/browse/KEYCLOAK-9694
The associated documentation is currently available at
https://github.com/cloudtrust/keycloak-documentation/tree/multi-token-pro.... It is
complete, but as the quality review is not finished, the PR for the documentation will
come a couple of days after this pull request.
This was a collaborative work from many people (you can see the pull request for the
details of the contributors), both for the design and for the development, and I would
like to thank everyone involved.
Best regards,
Alistair Doswald