Our keycloak backend is in Java language that have an official Firebase
Admin SDK
We create custom tokens with Java Firebase Admin SDK.
Yes, another option is to sign in Firebase using additional Identity
Providers (
https://github.com/FirebaseExtended/custom-auth-samples).
But for keycloak I do not know yet how to do it.
I will see this example (
https://github.com/FirebaseExtended/custom-auth-samples/tree/master/kakao)
which seems to me well done.
But I prefer the first option with JWT.
Thanks
Youcef HILEM
Le sam. 23 mars 2019 à 06:50, Sebastien Blanc <sblanc(a)redhat.com> a écrit :
But this token will still be signed by Keycloak and I. The
documentation
you pointed out says that the token must be signed by the firebase service
if I remember correctly. Can you add the firebase service as Identity
provider in Keycloak ? In this case you could maybe use the token exchange
“internal token to external token”
Le sam. 23 mars 2019 à 03:34, HILEM Youcef <youcef.hilem(a)gmail.com> a
écrit :
> Hi,
> You did not understand my use case.
>
> OAuth 2.0 authorization servers provide support for four main grant types
> according to the OAuth 2.0 specification. It also has the flexibility to
> support any custom grant types.
> I do not find documentation that provides instructions on how to implement
> a custom grant type for Keycloack OAuth 2.0 authorization server and how
> to
> extend the behavior of default grant types.
>
> My clients are OAuth2 Clients.
> I want use a custom grant type to generate a Google JWT Token.
>
> I found this (
https://github.com/looorent/keycloak-configurable-token-api)
> and
> I think it looks like what I'm looking for.
>
>
> Thanks
> Youcef HILEM
> _______________________________________________
> keycloak-user mailing list
> keycloak-user(a)lists.jboss.org
>
https://lists.jboss.org/mailman/listinfo/keycloak-user
>