[keycloak-dev] From Picketlink to Keycloak
Marek Posolda
mposolda at redhat.com
Tue Sep 29 03:35:33 EDT 2015
Keycloak is OOTB server, which redirects you to login screen on Keycloak
server side and handles authentication for you. If you want to
authenticate to Keycloak with LDAP users, you can already do that. You
can create LDAP federation provider in Keycloak admin console and you're
done. See the docs:
http://keycloak.github.io/docs/userguide/html/user_federation.html
However for Picketlink JPA IDM, we don't have any migration right now.
AFAIK we plan to add support for Picketlink federation provider into
Keycloak, which will allow to migrate users from any picketlink identity
store (JPA, File, LDAP and others) and use them in Keycloak.
Marek
On 27/09/15 00:13, Arthur Gregório wrote:
> i'm using JPA IDM mixed with LDAP authentication, but keyclok seems
> very different from what picktlink is...
>
> Any idea when docs will be updated to guide users who want migrate
> from PL do KC, since both will become one and PL is abandoned since
> 2.7.x release.
>
> Something that will be annoying is having to use an structure as the
> KC uses to do things that the PL does .. That is, from what little
> I've seen so far, things will become more complex for applications who
> just want a identity manager and authorizations.
>
> Like my opensource project, webBudget
> (github.com/arthurgregorio/web-budget
> <http://github.com/arthurgregorio/web-budget>) that uses PL
>
> *Arthur P. Gregório*
> /+55 45 9958-0302/
> @gregorioarthur
> www.arthurgregorio.eti.br <http://www.arthurgregorio.eti.br>
>
> 2015-09-25 18:35 GMT-03:00 Bill Burke <bburke at redhat.com
> <mailto:bburke at redhat.com>>:
>
> Depends what features you use in Picketlink. Keycloak, right now
> is an
> IDP auth server that supports SAML 2.0 and OpenID Connect. We also
> have
> client adapters that use a small extension to OpenID Connect as our
> protocol. What's in the works?
>
> * A SAML 2.0 client adapter if you are connecting to IDPs other than
> Keycloak
>
> This should be in 1.6.
>
> On 9/25/2015 9:46 AM, Arthur Gregório wrote:
> > Hi!
> >
> > I already have a system running with picketlink, everything
> works normally.
> >
> > However, with the merge of the two projects, I wonder if I can
> ever move
> > to keycloak, if already have a migration guide, or how to proceed?
> >
> > at.,
> >
> > *Arthur P. Gregório*
> > /+55 45 9958-0302 <tel:%2B55%2045%209958-0302>/
> > @gregorioarthur
> > www.arthurgregorio.eti.br <http://www.arthurgregorio.eti.br>
> <http://www.arthurgregorio.eti.br>
> >
> >
> > _______________________________________________
> > keycloak-dev mailing list
> > keycloak-dev at lists.jboss.org <mailto:keycloak-dev at lists.jboss.org>
> > https://lists.jboss.org/mailman/listinfo/keycloak-dev
> >
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org <mailto:keycloak-dev at lists.jboss.org>
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
>
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20150929/d7cad3a3/attachment.html
More information about the keycloak-dev
mailing list