4:08 p.m.
Hi all,
I know that in keycloak 3.4.2 you can use rest admin api by retrieving a
token. This token can be retrieved by using:
- username & password
- clientid & client secret
- signed jwt
for instance by using clientid & clientsecret I can connect to keycloak
host by using the following:
KeycloakBuilder keycloakBuilder = KeycloakBuilder.builder()
.serverUrl(AUTH_SERVER)
.realm(ADMIN_REALM)
.grantType("client_credentials")
.clientId("admin-cli")
.clientSecret("XXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX")
.grantType("client_credentials")
.resteasyClient(client);
My question is how should I use JWT ?
I changed client authenticator in "credentials" tab by selecting "signed
jwt" but from documentation it is not clear to me how to connect by using
this kind of authentication method.
thanks for any help
Emanuele
1:17 a.m.
It is not yet supported on admin client. Feel free to create JIRA to
support this. Ideally we should be able to re-use same code for "plug"
client credentials like it's used in our adapters. Maybe we would need
to move some classes from adapter into some more generic module like
"keycloak-core", I am not sure.
Marek
On 25/04/18 23:08, Emanuele Gesuato wrote:
Hi all,
I know that in keycloak 3.4.2 you can use rest admin api by retrieving a
token. This token can be retrieved by using:
- username & password
- clientid & client secret
- signed jwt
for instance by using clientid & clientsecret I can connect to keycloak
host by using the following:
KeycloakBuilder keycloakBuilder = KeycloakBuilder.builder()
.serverUrl(AUTH_SERVER)
.realm(ADMIN_REALM)
.grantType("client_credentials")
.clientId("admin-cli")
.clientSecret("XXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX")
.grantType("client_credentials")
.resteasyClient(client);
My question is how should I use JWT ?
I changed client authenticator in "credentials" tab by selecting "signed
jwt" but from documentation it is not clear to me how to connect by using
this kind of authentication method.
thanks for any help
Emanuele
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
8:30 a.m.
I am also interested in this feature, if anyone open ticket please post the
ticket number so i can follow it
Thank you
Thai
On Fri, Apr 27, 2018 at 2:17 AM, Marek Posolda <mposolda(a)redhat.com> wrote:
It is not yet supported on admin client. Feel free to create JIRA to
support this. Ideally we should be able to re-use same code for "plug"
client credentials like it's used in our adapters. Maybe we would need
to move some classes from adapter into some more generic module like
"keycloak-core", I am not sure.
Marek
On 25/04/18 23:08, Emanuele Gesuato wrote:
> Hi all,
>
> I know that in keycloak 3.4.2 you can use rest admin api by retrieving a
> token. This token can be retrieved by using:
> - username & password
> - clientid & client secret
> - signed jwt
>
> for instance by using clientid & clientsecret I can connect to keycloak
> host by using the following:
>
> KeycloakBuilder keycloakBuilder = KeycloakBuilder.builder()
> .serverUrl(AUTH_SERVER)
> .realm(ADMIN_REALM)
> .grantType("client_credentials")
> .clientId("admin-cli")
> .clientSecret("XXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX")
> .grantType("client_credentials")
> .resteasyClient(client);
>
> My question is how should I use JWT ?
>
> I changed client authenticator in "credentials" tab by selecting
"signed
> jwt" but from documentation it is not clear to me how to connect by using
> this kind of authentication method.
>
> thanks for any help
> Emanuele
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user(a)lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
--
Castor Technologies Inc
460 rue St-Catherine St Ouest, Suite 613
Montréal, Québec H3B-1A7
(514) 360-7208 o
(514) 798-2044 f
ntle(a)castortech.com
www.castortech.com
CONFIDENTIALITY NOTICE: The information contained in this e-mail is
confidential and may be proprietary information intended only for the use
of the individual or entity to whom it is addressed. If the reader of this
message is not the intended recipient, you are hereby notified that any
viewing, dissemination, distribution, disclosure, copy or use of the
information contained in this e-mail message is strictly prohibited. If you
have received and/or are viewing this e-mail in error, please immediately
notify the sender by reply e-mail, and delete it from your system without
reading, forwarding, copying or saving in any manner. Thank you.
AVIS DE CONFIDENTIALITE: L’information contenue dans ce message est
confidentiel, peut être protégé par le secret professionnel et est réservé
à l'usage exclusif du destinataire. Toute autre personne est par les
présentes avisée qu'il lui est strictement interdit de diffuser, distribuer
ou reproduire ce message. Si vous avez reçu cette communication par erreur,
veuillez la détruire immédiatement et en aviser l'expéditeur. Merci.
2421
days inactive
2423
days old
2 comments
3 participants
participants (3)
-
Emanuele Gesuato -
Marek Posolda -
Nhut Thai Le