We are using the Spring Security Adapter with Spring Security 4. -- Christopher Savory <http://www.edlogics.com/> <https://www.linkedin.com/company/edlogics> <https://twitter.com/EdLogics> On 10/26/16, 9:29 AM, &quot;keycloak-user-bounces(a)lists.jboss.org on behalf of Michael Furman" <keycloak-user-bounces(a)lists.jboss.org on behalf of michael_furman(a)hotmail.com&gt; wrote: One additional question if the adapter supports Spring Security version 4 ________________________________ From: keycloak-user-bounces(a)lists.jboss.org <keycloak-user-bounces(a)lists.jboss.org&gt; on behalf of Michael Furman <michael_furman(a)hotmail.com&gt; Sent: Wednesday, October 26, 2016 4:51 PM To: keycloak-user(a)lists.jboss.org Subject: [keycloak-user] Clarifications regarding Spring Security Adapter Configuration Hi all, I will happy for couple of clarifications regarding Java Adapter Configuration: https://keycloak.gitbooks.io/securing-client-applications-guide/content/t... I want to use Spring Security Adapter: https://keycloak.gitbooks.io/securing-client-applications-guide/content/t... 1. Where keycloak.json should be located? How I pass it to the Spring Security Adapter? 2. Is it possible to configure all properties (that configured in keycloak.json) via database? Or alternatively via some Spring Context? In this case I will be able to put confidential information (e.g. truststore-password) in the database Thank you in advance for your help. Best regards, Michael _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user

Thanks Bruno, I will happy for the additional clarification. What is the redirect URL (Valid Redirect URIs) I should configure on IDP during the client configuration? Below or something else? http://<host>/<app>/sso/login<http://%3chost%3e/%3capp%3e/sso/login> ________________________________ From: Bruno Oliveira <bruno(a)abstractj.org&gt; Sent: Friday, October 28, 2016 2:34 PM To: Michael Furman; keycloak-user Subject: Re: [keycloak-user] Clarifications regarding Spring Security Adapter Configuration Hi Michael On 2016-10-26, Michael Furman wrote: If you look at the section "XML Configuration"[1] there's a snippet showing how to configure it: <bean id="adapterDeploymentContext" class="org.keycloak.adapters.springsecurity.AdapterDeploymentContextFactoryBean"> <constructor-arg value="/WEB-INF/keycloak.json" /> </bean> I did something related to this in the past with RESTful endpoints, not sure if it helps. But if you have sensitive information, I strongly recommend not doing that. Looking at this issue[2], I'm not sure if what you want is supported now. [1] - https://keycloak.gitbooks.io/securing-client-applications-guide/content/t... [2] - https://issues.jboss.org/browse/KEYCLOAK-1410 keycloak-user Info Page - JBoss Developer<https://lists.jboss.org/mailman/listinfo/keycloak-user> lists.jboss.org To see the collection of prior postings to the list, visit the keycloak-user Archives. Using keycloak-user: To post a message to all the list members ... -- abstractj PGP: 0x84DC9914