How I possible to reuse configuration between authenticators? - keycloak-user - Jboss List Archives

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

How I possible to reuse configuration between authenticators?

Submitted Feature: More Secure...

Keycloak Social Login

Known Michael

Sunday, 12 March 2017 Sun, 12 Mar '17

1:13 p.m.

I need to use 2 authenticators in 2 different flows: browser and direct grant flows. It will be different authenticators from the keycloak point of view same Java classes. I want to reuse the authenticator configuration: - I want to update configuration of only one authenticator - I want to store it in one place in the database - I want its configuration properties will be provided only for one authenticator - I want to reuse the configuration in the second authenticator How is possible to do it?

Reply

Show replies by date

Marek Posolda

Monday, 13 March Mon, 13 Mar

4:12 a.m.

On 12/03/17 19:13, Known Michael wrote:

I need to use 2 authenticators in 2 different flows: browser and direct grant flows. It will be different authenticators from the keycloak point of view same Java classes. I want to reuse the authenticator configuration: - I want to update configuration of only one authenticator - I want to store it in one place in the database - I want its configuration properties will be provided only for one authenticator - I want to reuse the configuration in the second authenticator How is possible to do it?

Not sure I understand fully, but if your authenticator configuration is stored in database or in properties file, then you can just add 1 property and/or 2 properties to your authenticator in Keycloak. And that will be "databaseURL" and/or "propertiesFile" . You may not even need any property as long as your DB and/or property file is at some known location and can be hardcoded in your implementation. For example, if your properties file is in "/foo/my-authenticator.properties", then your Authenticator implementation can just read the configuration from this property file. And if you change something in this property file, then both KC authenticator instances for "Browser" and "directGrant" will be immediately able to see that change. Marek

_______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user

Reply

2848

days inactive

2849

days old

keycloak-user@lists.jboss.org

Manage subscription

1 comments

2 participants

tags (0)

participants (2)

Known Michael
Marek Posolda