Hello everybody,

I've been working on X509 cert based user authentication in keycloak. The core functionality is mostly finished (based on the requirements), so it would be great if the keycloak dev team can review the implementation. The repo that contains the implementation is here:

https://github.com/brat000012001/keycloak/tree/master/services/src/main/java/org/keycloak/authentication/authenticators/x509

There is a README.md containing a brief summary of proposed changes to help gaining some basic understanding of what's been implemented.

PR #3167 - X509 Certificate user authentication

The unit tests and documentation is a work in progress. 

Regards,

Peter