[keycloak-dev] implement JPA model

Pedro Igor Silva psilva at redhat.com
Tue Nov 5 07:32:56 EST 2013 

I think most of the frustrating feeling you got was because you're trying to reuse the Basic Model.

https://github.com/keycloak/keycloak/tree/master/model/picketlink/src/main/java/org/keycloak/models/picketlink/mappings (If I'm not wrong)

The Basic Model is a simple and ready to use domain model that can be used to enable very quickly most of IDM capabilities. But you're not tied to this model at all, as you can always provide your own and make it PL enabled.

When designing an application like yours, I believe the best thing to do is start by writing your own model. And then provide the necessary annotations to enable PL on top of it.

The idea behind the JPA store is not restrict your design decisions when modeling your domain model, but integrate with it.

Give me a chance and I can enable PL in your model, so you still get your model the way you want.

----- Original Message -----
From: "Anil Saldhana" <Anil.Saldhana at redhat.com>
To: keycloak-dev at lists.jboss.org
Sent: Monday, November 4, 2013 2:53:48 PM
Subject: Re: [keycloak-dev] implement JPA model

On 11/04/2013 10:25 AM, Bill Burke wrote:
>
> On 11/4/2013 11:05 AM, Anil Saldhana wrote:
>> What I cannot accept is Bill's refusal to look at what we are trying to
>> tell him and cop out
>> in the guise of timelines. The PL team has very limited time in engaging
>> in lengthy email
>> discussions but we are willing to help in any manner if the team shows
>> interest in listening
>> to us.
>>
> Anil, what exactly are you trying to tell me?  That there's some
> mythical "unified developer experience" I'm missing out on?  An
> experience that currently doesn't exist at all, even in Wildfly?  An
> experience that you're promising for WF9?  What is Keycloak supposed to
> do until then?
I am saying try to use the PL IDM API for the basic model.  That would
automatically reduce your work when WF9 will use the IDM natively for its
user stores. Basically you can just reuse the integration work done in
WF9 for IDM configuration. KeyCloak would not have to do anything.

Right now for JBossAS7, EAP6.1+ and WF8,  PicketLink IDM exists as
an external library.  The IDM subsystem does work for AS7,6.1 but has
not yet been updated for WF8.  But KeyCloak as a web application should
focus on the IDM API for the basic model.
>
> What's frustrating is that our data model is simple.  So simple it only
> takes one or two days to write a JPA or Mongo implementation for.  I
> just refuse to spend weeks and weeks like I did this summer wading
> through Picketlink code and/or waiting for next next patch to be
> released to make Picketlink usable.  Until this magic Picketlink
> "unified developer experience" comes to fruition, we're doing our own
> backend.
Ok.  If you have your JPA model in a KeyCloak branch somewhere, we can
take a look at it and make suggestions.
_______________________________________________
keycloak-dev mailing list
keycloak-dev at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev

More information about the keycloak-dev mailing list