Hi, I'm the creator of pac4j and we would be happy to receive a new contribution. I don't know Keycloak, but the only "constraint" is that it respects more or less the general flow : redirect the user to the provider, authentication, be redirected back to the application, retrieve the user profile... The main advantage of integrating Keycloak into pac4j is that it would become available subsequently in: - any J2E application - any Shiro application - any Spring Security application - any Play application - the CAS server - any Ratpack application - any Vertx application (soon I hope) - any Undertow application (soon I hope). Open a discussion on the pac4j-dev mailing list: https://groups.google.com/forum/?fromgroups#!forum/pac4j-dev <https://groups.google.com/forum/?fromgroups#%21forum/pac4j-dev> or send a pull request to: https://github.com/leleuj/pac4j... Thanks. Best regards, Jérôme ---------- Message transféré ---------- De : "Bill Burke" <bburke(a)redhat.com <mailto:bburke@redhat.com>> Date : 12 mai 2014 17:39 Objet : Re: [undertow-dev] CAS / OAuth / OpenID / HTTP / SAML client protocol support? À : <undertow-dev(a)lists.jboss.org <mailto:undertow-dev@lists.jboss.org>> Cc : If I wrote a pac4j module for Keycloak [1], it could be accepted and distributed with pac4j? [1] http://keycloak.org On 5/12/2014 11:32 AM, Michaël REMOND wrote: > Hi, > > I currently contribute to a Java library from Jerome Leleu, able to > protect applications and delegate authentications to various identity > providers. It currently supports 5 different protocols: CAS, OAuth, > OpenID, HTTP and SAML and 18 identity providers (Facebook, Twitter, > Google, Yahoo...) through a very simple and unified API accross > protocols/JVM frameworks: https://github.com/leleuj/pac4j. > > The pac4j librairies are used in various JVM frameworks with the > appropriate implementations: Spring Security, Shiro, CAS, J2E and Play. > Although the core pac4j librairies gathers "a lot of" code (300 classes, > 26000 lines of source code), the implementations to specific JVM > frameworks are pretty straigtforward: from 4 classes for Spring Security > to 11 classes for Play Framework 2.x. > > We are currently targeting new plateforms and especially async one; we > got an implementation from ratpack (http://www.ratpack.io/) and we > discussed also with the guys from vert.x. They gave us some ideas in > order to improve our library by becoming more "reactive". > > I think that pac4j could be helpful for the Undertow community too by > bringing client multi-protocols support. > > I looked at the security model from Undertow and I start to think about > a possible integration by developing a "Pac4jAuthenticationMechanism". > > What do you think about such development? Are you interested in a demo > app showing how this could work? Do you have suggestions? > > Thanks. > Best regards, > Michael Remond > > > _______________________________________________ > undertow-dev mailing list > undertow-dev(a)lists.jboss.org <mailto:undertow-dev@lists.jboss.org> > https://lists.jboss.org/mailman/listinfo/undertow-dev > -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com _______________________________________________ undertow-dev mailing list undertow-dev(a)lists.jboss.org <mailto:undertow-dev@lists.jboss.org> https://lists.jboss.org/mailman/listinfo/undertow-dev _______________________________________________ undertow-dev mailing list undertow-dev(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/undertow-dev