Re: [keycloak-user] Spring security adapter for SAML
Hi Jeremy,
I know its been after quite sometime but I only got that project now to
integrate Keycloak with Spring security.
Can you give me a small background or some sample configurations if
required.
I went through the documentation and it seems we have to prepare a long
spring security context file to make it work. Is that correct or we can
just put the adapter in the class path and it will work with keyclaok?
Regards,
Pulkit
On Wed, Oct 26, 2016 at 5:50 PM, Jeremy Simon <jeremy(a)jeremysimon.com>
wrote:
Pulkit,
There is a SAML extention for Spring:
http://projects.spring.io/spring-security-saml/
We're using this on a few applications and it works pretty good. The
only drawback, and maybe a later version has overcome this, is that
backchannel logouts coming from an IDP (in the case of SLO / Global
Logout) didn't work, since the application side did not store the
SessionIndex outside of an HttpSession's context (linked to a browser
cookie). We just ended up writing our own registry to overcome that.
jeremy
jeremy(a)jeremysimon.com
www.JeremySimon.com
On Wed, Oct 19, 2016 at 3:03 AM, Pulkit Gupta <pulgupta(a)redhat.com> wrote:
> Hi Team,
>
> I have a application with Spring security configured.
> We are trying to migrate the same to keycloak.
>
> Do we have a spring security adapter for keycloak with SAML.
> I went through the documentation and can see that we have a spring
adapter
> but that is for open ID connect.
>
> --
> Thanks,
> Pulkit
> AMS
> _______________________________________________
> keycloak-user mailing list
> keycloak-user(a)lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
--
PULKIT GUPTA
SENIOR SOFTWARE APPLICATIONS ENGINEER
Red Hat IN IT GBD <https://www.redhat.com/>
Pune - India
pulgupta(a)redhat.com T: +91-2066817536
<http://redhatemailsignature-marketing.itos.redhat.com/> IM: pulgupta
<https://red.ht/sig>