We are using KeyCloak for a several weeks now, one of the flows is user script
authentication with offline token:
1. The user log in to the UI
2. Generates offline token by entering his password again
3. Put the offline token in his script
4. Executes the script
Now we want to add external IDP support, first is it possible to generate offline tokens
for extremal IDP in KeyCloak ? if so how ?
Second in section #2 above the user enters his password to generate the offline token,
with external IDP we can't use his password, one alternative is to always generate the
offline token in the login (add offline_access), however is it make sense to create
offline token for every login ?
The information contained in this message is proprietary to the sender, protected from
disclosure, and may be privileged. The information is intended to be conveyed only to the
designated recipient(s) of the message. If the reader of this message is not the intended
recipient, you are hereby notified that any dissemination, use, distribution or copying of
this communication is strictly prohibited and may be unlawful. If you have received this
communication in error, please notify us immediately by replying to the message and
deleting it from your computer. Thank you.