Hello,

I'm looking into Keycloak for a consulting engagement. The idea is to use Keycloak for SSO on multiple front end applications in order to secure many REST APIs. Some of the front end applications will be mobile and others will be browser base. Keycloak easily handled both effortlessly in a simple demo I created.

Initially the client was looking for Active Directory integration, but now has decided to look into integrating with a REST service for authentication / group information. This brings up a few initial questions:

1. How would one go about integrating with this REST Service?

- The user would need to be authenticated with usename / password retrieved from the REST Service.

- The Password is encrypted.

- New users would need to be "created" via the REST Service as well. (The REST Service is really an interface for an oracle table. So new users ultimately would need to be inserted into this table.)

2. I assume that Keycloak still needs its own database for operation, but could this database be configured to not include password storage for users?

Thank you,

jim

Red Hat Consulting

jdillon@redhat.com || 540.420.3639