12:42 p.m.
Hello,
I am starting to use Keycloak as IDM inside my actual Project. I have to
projects, Java and Phyton projects and I want to use Keycloak as SSO. I
manage to integrate Java project with Keycloak running in Wildfly, but I
don´t know how I should proceed with Phyton project.
Currently we are using this Phyton plugin to connect with Django:
http://python-social-auth.readthedocs.org/en/latest/
Could you help us about what steps should be done to use Keycloak with this
plugin?
Thank you in advanced,
Pablo Nuño
7:03 p.m.
Hi,
Afraid we haven't looked at adapters for python yet, but you should be able to use any
OAuth2 or OpenID Connect library to authenticate with Keycloak. The endpoints you need
are:
* Login: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM NAME>/tokens/login
* Access token: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
NAME>/tokens/access/codes
* Refresh token: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
NAME>/tokens/refresh
With claims enabled through the admin console the access token contains ID token
parameters from OpenID Connect (preferred_username, email, etc.) so you can retrieve those
directly from the token. Alternatively you can also retrieve the user profile from the
account profile endpoint (<KEYCLOAK SERVER>/auth/realms/<REALM
NAME>/account).
----- Original Message -----
From: "Pablo N" <panulab(a)gmail.com>
To: keycloak-user(a)lists.jboss.org
Sent: Monday, 29 September, 2014 12:42:33 PM
Subject: [keycloak-user] Integration Keycloak with phyton application
Hello ,
I am starting to use Keycloak as IDM inside my actual Project. I have to
projects, Java and Phyton projects and I want to use Keycloak as SSO. I
manage to integrate Java project with Keycloak running in Wildfly, but I
don´t know how I should proceed with Phyton project.
Currently we are using this Phyton plugin to connect with Django:
http://python-social-auth.readthedocs.org/en/latest/
Could you help us about what steps should be done to use Keycloak with this
plugin?
Thank you in advanced,
Pablo Nuño
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
4:04 p.m.
Hi,
On Mon, 29 Sep 2014 13:03:13 -0400 (EDT)
Stian Thorgersen <stian(a)redhat.com> wrote:
* Login: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
NAME>/tokens/login
* Access token: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
NAME>/tokens/access/codes
* Refresh token: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
NAME>/tokens/refresh
Not sure if I'm correct, but there is an extra /tokens/ in those URLs ?
e.g. When you visit Admin Console
<KEYCLOAK-SERVER>/auth/admin/
You get redirected to the login page at:
<KEYCLOAK-SERVER>/auth/realms/master/tokens/login?client_id=security-admin-console&redirect_uri=<KEYCLOACK
SERVER>SERVER>%2Fauth%2Fadmin%2Fmaster%2Fconsole%2F&state=some-uuid&response_type=code
So the pattern is:
<KEYCLOAK-SERVER>/auth/realms/<REALM-NAME>/tokens/login
<KEYCLOAK-SERVER>/auth/realms/<REALM-NAME>/tokens/access/codes
<KEYCLOAK-SERVER>/auth/realms/<REALM-NAME>/tokens/refresh
Is this a correct assumption?
Thanks,
--
Iván
8:41 a.m.
----- Original Message -----
From: "Iván Perdomo" <ivan(a)akvo.org>
To: "Stian Thorgersen" <stian(a)redhat.com>
Cc: "Pablo N" <panulab(a)gmail.com>, keycloak-user(a)lists.jboss.org
Sent: Tuesday, 30 September, 2014 4:04:48 PM
Subject: Re: [keycloak-user] Integration Keycloak with phyton application
Hi,
On Mon, 29 Sep 2014 13:03:13 -0400 (EDT)
Stian Thorgersen <stian(a)redhat.com> wrote:
> * Login: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
> NAME>/tokens/login
> * Access token: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
> NAME>/tokens/access/codes
> * Refresh token: <KEYCLOAK SERVER>/auth/tokens/realms/<REALM
> NAME>/tokens/refresh
Not sure if I'm correct, but there is an extra /tokens/ in those URLs ?
e.g. When you visit Admin Console
<KEYCLOAK-SERVER>/auth/admin/
You get redirected to the login page at:
<KEYCLOAK-SERVER>/auth/realms/master/tokens/login?client_id=security-admin-console&redirect_uri=<KEYCLOACK
SERVER>SERVER>%2Fauth%2Fadmin%2Fmaster%2Fconsole%2F&state=some-uuid&response_type=code
So the pattern is:
<KEYCLOAK-SERVER>/auth/realms/<REALM-NAME>/tokens/login
<KEYCLOAK-SERVER>/auth/realms/<REALM-NAME>/tokens/access/codes
<KEYCLOAK-SERVER>/auth/realms/<REALM-NAME>/tokens/refresh
Yes, those are the correct URLs. The ones I listed did indeed have an extra /tokens/ it
shouldn't have had ;)
Is this a correct assumption?
Thanks,
--
Iván
3495
days inactive
3497
days old
3 comments
3 participants
participants (3)
-
Iván Perdomo -
Pablo N -
Stian Thorgersen