Keycloak is OOTB server, which redirects you to login screen on Keycloak server side and handles authentication for you. If you want to authenticate to Keycloak with LDAP users, you can already do that. You can create LDAP federation provider in Keycloak admin console and you're done. See the docs: http://keycloak.github.io/docs/userguide/html/user_federation.html

However for Picketlink JPA IDM, we don't have any migration right now. AFAIK we plan to add support for Picketlink federation provider into Keycloak, which will allow to migrate users from any picketlink identity store (JPA, File, LDAP and others) and use them in Keycloak.

Marek


On 27/09/15 00:13, Arthur Gregório wrote:
i'm using JPA IDM mixed with LDAP authentication, but keyclok seems very different from what picktlink is... 

Any idea when docs will be updated to guide users who want migrate from PL do KC, since both will become one and PL is abandoned since 2.7.x release.

Something that will be annoying is having to use an structure as the KC uses to do things that the PL does .. That is, from what little I've seen so far, things will become more complex for applications who just want a identity manager and authorizations.

Like my opensource project, webBudget (github.com/arthurgregorio/web-budget) that uses PL

Arthur P. Gregório
+55 45 9958-0302
@gregorioarthur
www.arthurgregorio.eti.br

2015-09-25 18:35 GMT-03:00 Bill Burke <bburke@redhat.com>:
Depends what features you use in Picketlink.  Keycloak, right now is an
IDP auth server that supports SAML 2.0 and OpenID Connect.  We also have
client adapters that use a small extension to OpenID Connect as our
protocol.  What's in the works?

* A SAML 2.0 client adapter if you are connecting to IDPs other than
Keycloak

This should be in 1.6.

On 9/25/2015 9:46 AM, Arthur Gregório wrote:
> Hi!
>
> I already have a system running with picketlink, everything works normally.
>
> However, with the merge of the two projects, I wonder if I can ever move
> to keycloak, if already have a migration guide, or how to proceed?
>
> at.,
>
> *Arthur P. Gregório*
> /+55 45 9958-0302/
> @gregorioarthur
> www.arthurgregorio.eti.br <http://www.arthurgregorio.eti.br>
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev@lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>

--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
_______________________________________________
keycloak-dev mailing list
keycloak-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev



_______________________________________________
keycloak-dev mailing list
keycloak-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev