Hi developers,
I want to use mobile number and SMS text code to login to keycloak. But keycloak
requires username and password to login. I copy Authentication of Browser, and remove
"Username Password Form", and I add my own "Mobile OTP" SPI. When I
open login page, it shows "Invalid username or password", the log says
" 21:00:03,638 WARN [org.keycloak.events] (default task-106) type=LOGIN_ERROR,
realmId=test1, clientId=security-admin-console, userId=null, ipAddress=127.0.0.1,
error=invalid_redirect_uri, redirect_uri=http://localhost:8080/auth/admin/master/console/
21:00:45,711 WARN [org.keycloak.services] (default task-107) KC-SERVICES0013: Failed
authentication: org.keycloak.authentication.AuthenticationFlowException: authenticator:
mobile-otp-authenticator"
Is there a way to remove "Username and Password Form" and login with my own
SPI? Or can I override default "Username and Password Form" with my own logic? I
mean "override" is: I write a new SPI without changing keycloak source code.
If I can't achieve this, I think I need to use other OAuth open source application
and bind to keycloak as an Identity Provider and change the source of OAuth application to
achieve my goal. It will be better if I can achieve my goal without another IdP.
Thanks in advance.
Show replies by thread