[keycloak-user] Multi Tenancy

Bill Burke bburke at redhat.com
Sun Feb 23 08:18:23 EST 2014



On 2/23/2014 8:08 AM, Bill Burke wrote:
>
>
> On 2/22/2014 10:46 PM, Travis De Silva wrote:
>> I just read the discussions on KEYCLOAK-292 on the developer mailing
>> list.
>> http://lists.jboss.org/pipermail/keycloak-dev/2014-February/001378.html
>>
>> The concept of creating an application under the keycloak-admin realm
>> for each realm created looks interesting.
>>
>> When it comes to multi tenancy, I think the issue is around the
>> application installation process. If there is a way where we don't have
>> to provide individual application level keycloak.json's or WildFly/JBoss
>> subsystem XML's, then we are getting closer to multi tenancy. I am
>> thinking can this be done at a keycloak top level or the ability to use
>> wildcards for the resource elements in the json.
>>
>
> The application itself needs to be able to handle multiple realms at
> once?  How would you choose which realm to belong to when initiating a
> login?  Can you elaborate a bit more on what the flow would look like
> (what you want) when interacting with your applications?
>
> Aerogear UPS might be in a similar position as you too, so this is
> something I'd like to solve sooner rather than later.

Please respond to above, but this was some of my thoughts with Aerogear 
which may be related:

http://lists.jboss.org/pipermail/keycloak-dev/2014-February/001292.html

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com


More information about the keycloak-user mailing list