Hello,
We have a use case where we initially want to run Keycloak side by side
with our own authentication system. Our current way of handling it is by
effectively overriding KeycloakOIDCFilter::shouldSkip method to only
execute the filter if the user is on a special Keycloak login url or if the
attribute KeycloakAccount.class.getName() is on the session (naive way to
deduce that the user has logged in with Keycloak).
As this feels like a fragile way of doing things, we were wondering if
others have had the same use case and could point us in a better direction.
Additionally, we deploy our single war in DTAP. We would therefore like to
suggest to add a possibility to set the keycloak.config.file path via a
system environment variable.
Looking forward to any response or advice,
Davey Chu
Show replies by date