[keycloak-dev] Question on securing teiid with keycloak

[Shankar_Bhaskaran]

Hi ,

I am trying to secure teiid/jdbc and odata using keycloak . I have a secure domain defined as follows but doesn't seem to work for direct access(jdbc from squirrel) . If I remove org.keycloak.adapters.jboss.KeycloakLoginModule it seem to work fine.

<security-domain name="keycloak">
                    <authentication>
                        <login-module code="org.keycloak.adapters.jboss.KeycloakLoginModule" flag="required"/>
                        <login-module code="org.teiid.jboss.PassthroughIdentityLoginModule" flag="required" module="org.jboss.teiid"/>
                        <login-module code="org.keycloak.adapters.jaas.DirectAccessGrantsLoginModule" flag="optional" module="org.keycloak.keycloak-adapter-core">
                            <module-option name="keycloak-config-file" value="${jboss.server.config.dir}/keycloak-dsis-data.json"/>
                            <module-option name="password-stacking" value="useFirstPass"/>
                        </login-module>

                    </authentication>
                </security-domain>

Regards,
Shankar