[keycloak-dev] Keycloak login without redirect to external login page
Summers Pittman
supittma at redhat.com
Fri Dec 1 14:38:32 EST 2017
On Fri, Dec 1, 2017 at 7:19 AM, Wojciech Trocki <wtrocki at redhat.com> wrote:
> I'm investigating possible options for creating javascript client that
> will help mobile developers (cordova, react native) to integrate with
> keycloak.
>
> The main idea will be to mimic other solutions that allow to login to the
> auth server using single method (instead of redirecting to the login page)
>
> For example:
>
> *authbase.auth().signInWithEmailAndPassword(email, password).then(...);*
>
> JavaScript adapter from keycloak team works fine for both Android and IOS,
> but mounting login page in webview and styling login page, may be barrier
> for the developers starting with keycloak.
>
> *Questions:*
>
> 1) Is possible to use keycloak without redirect to keycloak login page?
>
>
> 2) Do you have any suggestions for areas were mobile experience can be
> improved?
>
>
I don't have a JavaScript answer for you (boo!), but I have been tumbling
around in my head what it would take to make a broker that you can log in
to. A broker would basically act as a ghetto IdP and sock puppet account
mgmt in KeyCloak. That is a lot more work than just opening a web browser.
See my post here for a better version of that idea :
http://lists.jboss.org/pipermail/keycloak-user/2017-November/012404.html
Alternatively many systems have native token management that you might be
able to hook into as well. It doesn't negate the need to go to the system
browser, but if you are using the same account in multiple apps it could
give you a way to share a session without having each app log in separately.
However, the system browsers are starting to get smarter about their role
in modern authentication so you might be able to leverage them as well.
IIRC Chrome on Android treats the Google account special and I am sure you
can find something similar with safari on iOS.
> This topic was raised before on both dev and users lists before, but
> without definitive answer[1]
> I'm looking for any information that may be helpful.
>
> [1] http://lists.jboss.org/pipermail/keycloak-user/2016-
> November/008295.html
>
> --
>
> WOJCIECH TROCKI
>
> Red Hat Mobile <https://www.redhat.com/>
>
> IM: wtrocki
> <https://red.ht/sig>
>
More information about the keycloak-dev
mailing list