I think you can add claim mappers in the client configuration in Keycloak
which can then be exposed as headers.
See mod_auth_oidc configuration for claim mapping.
Cheers,
Thomas
Am 05.07.2016 11:33 vorm. schrieb "Subrahmanyam BV"
<bvs78(a)rediffmail.com>:
Hi Thomas,
Thanks for the quick reply . Here is the scenario that I am looking
for. Once the user gets authenticated, is there a way to pass some
attributes of the user (say for example, company, emailid, status of the
user etc...) as a part of the response headers?
Regards,
Subrahmanyam.
From: Thomas Darimont <thomas.darimont(a)googlemail.com>
Sent: Tue, 05 Jul 2016 11:54:44
To: Subrahmanyam BV <bvs78(a)rediffmail.com>
Cc: keycloak-user <keycloak-user(a)lists.jboss.org>
Subject: Re: [keycloak-user] Keycloak-Headerbased authentication
Hello,
I'm not familiar with siteminder and quickly googled
https://docops.ca.com/ca-single-sign-on-12-52-sp1/en/configuring/web-agen...
Based on that I think that mod_auth_oidc might do what you want.
https://github.com/keycloak/securing_apps_guide/blob/master/topics/oidc/m...
https://github.com/thomasdarimont/keycloak_mod_auth_oidc_example/blob/mas...
Cheers,
Thomas
Am 05.07.2016 6:44 vorm. schrieb "Subrahmanyam BV"
<bvs78(a)rediffmail.com>:
> HI,
> Just wanted to know whether keycloak supports header-based
> authentication as supported by siteminder. Please let me know on this.
>
> Regards,
> Subrahmanyam.
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user(a)lists.jboss.org
>
https://lists.jboss.org/mailman/listinfo/keycloak-user
>