[keycloak-dev] Extend LDAP User Federation Mechanism with TOTP capability

Marek Posolda mposolda at redhat.com
Tue Jan 24 06:59:06 EST 2017

Yes, I think that creating your own CredentialProvider (perhaps subclass 
of OTPCredentialProvider) would work better. Just answered on 
keycloak-user though.


On 24/01/17 03:56, Liam Maruff wrote:
> Hello there,
> I'd like to replace a custom-built authentication system with OpenID
> Connect via Keycloak. To do so, I intend to extend the LDAP User Federation
> mechanism (See LDAPStorageProvider, LDAPStorageProviderFactory) to support
> TOTP authentication.
> Having implemented my extension as a provider (albeit an extension lacking
> any additional capability), when I attempt to add an instance of my
> provider in the Keycloak administration console the 'Required Settings'
> page contains all of the settings for the LDAP federation I am deriving
> from, but lacks combo boxes (instead presenting line inputs in their
> place), and captions against most fields. What can I do to correct this
> behaviour?
> Alternatively, is there a more appropriate mechanism for me to provide the
> behaviour I desire? Any guidance would be greatly appreciated.
> Regards,
> Liam M
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev

More information about the keycloak-dev mailing list