[keycloak-user] WebSockets
Stian Thorgersen
stian at redhat.com
Tue Aug 11 04:01:45 EDT 2015
----- Original Message -----
> From: "Juraci Paixão Kröhling" <juraci at kroehling.de>
> To: keycloak-user at lists.jboss.org
> Sent: Tuesday, 11 August, 2015 9:56:25 AM
> Subject: Re: [keycloak-user] WebSockets
>
> On 08/11/2015 07:23 AM, Stian Thorgersen wrote:
> > I know there's no standard protocol, but I still think the token should be
> > sent through the socket itself not as part of the url. I don't like
> > sending it as the url for one, secondly having to drop and re-create the
> > socket every time the token expires negates the purpose of web sockets
> > somewhat.
>
> Just to be clear: Keycloak would not listen to or send messages, right?
> It's all part of an API that Keycloak would provide, so that server
> endpoints can validate/check tokens when needed.
Yep - there's no way for KC to listen/send to message unless we only support some specific protocols on top of web sockets.
We should already have the utilities available to parse and verify the tokens on the server end. On the client end keycloak.js should cover what's needed as you can get the token and refresh it as well.
>
> If so, I could then start some PoC for that.
>
> - Juca.
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list