Re: [keycloak-user] Disable logging in via REST API

Hello, I'm using keycloak-admin-client library, which AFAIK uses https://www.keycloak.org/docs-api/5.0/rest-api/index.html directly. I've found out, that 'Direct Grant' flow is triggered and I could create an org.keycloak.authentication.Authenticator that would always call context.failure(), effectively blocking login through REST API for the realm... This what bothers me is that I have problems finding any documentation how does that Authenticator work and I'm extending the project someone has written and looking what is happening. Best regards, Lukasz Lech -----Original Message----- From: Dmitry Telegin [mailto:demetrio@carretti.pro] Sent: Donnerstag, 4. Juli 2019 13:29 To: Lukasz Lech <l.lech(a)ringler.ch>; keycloak-user(a)lists.jboss.org Subject: Re: [keycloak-user] Disable logging in via REST API Hi Lucasz, This is probably related to your yesterday's posting, correct? Could you please elaborate on what you mean by "logging into Keycloak via REST API"? Cheers, Dmitry Telegin Carretti Consulting OÜ | Keycloak Consulting and Training Sepapaja 6, Tallinn 15551, Estonia | info(a)carretti.pro On Thu, 2019-07-04 at 08:45 +0000, Lukasz Lech wrote: