Is it possible to use an SPI component to handle at least coarse grained authorisation? It
can intercept the authentication to check the policy via the API?
cheers
andy
On Thu, 2017-02-16 at 18:16 -0500, Bill Burke wrote:
See Keycloak Proxy. We haven't really touched that code in
years
though. Instead we're recommending you proxy your app using Apache +
mod-auth-mellon (SAML) or mod-auth-openidc (OIDC).
On 2/16/17 5:08 PM, Adam Keily wrote:
>
> Hi Guys,
>
> Just wondering if it's possible to do any implement any keycloak authorization
controls for a SaaS app scenario where we don't have the ability to modify
> the application?
>
> e.g. We want to allow or deny access to an application based on role but no code can
be added to the app.
> _______________________________________________
> keycloak-user mailing list
> keycloak-user(a)lists.jboss.org
>
https://lists.jboss.org/mailman/listinfo/keycloak-user
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user