I just read the discussions on KEYCLOAK-292 on the developer mailing list.
The concept of creating an application under the keycloak-admin realm for each realm created looks interesting.
When it comes to multi tenancy, I think the issue is around the application installation process. If there is a way where we don't have to provide individual application level keycloak.json's or WildFly/JBoss subsystem XML's, then we are getting closer to multi tenancy. I am thinking can this be done at a keycloak top level or the ability to use wildcards for the resource elements in the json.
Is LiveOak a multi tenancy platform? Wondering if they would need such a feature.