[keycloak-user] Automated testing for keycloak secured applications

Orestis Tsakiridis orestis.tsakiridis at telestax.com
Tue Dec 15 11:11:20 EST 2015


I see.

So, i'll need to have a separate working keycloak server available for
testing. No workarounds. Did i got this right ?





On Tue, Dec 15, 2015 at 6:00 PM, Bill Burke <bburke at redhat.com> wrote:

>
>
> On 12/15/2015 10:54 AM, Orestis Tsakiridis wrote:
> > Hello,
> >
> > I try to build automated tests for a keycloak secured REST application.
> > I plan to use arquilian as a test platform.
> >
> > Do i need to have a working keycloak server to be used in the tests ?
> > Or is it possible to embed keycloak in the temporary deployment created
> > by arquilian?
> >
>
> That's a real good point.  Not sure how we are tackling this.
>
> > Btw, my endpoints don't use web.xml based security rules. I instead use
> >
> > RSATokenVerifier.verifyToken() to manually verify the token.
> >
> > Thus, i suppose that being able to manually create auth tokens from my
> > test cases (and not relying on a keycloak server) would also work.
> >
>
> FYI, Keycloak client adapters do have a filter implementations now that
> you can use.
>
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20151215/49b9f746/attachment-0001.html 


More information about the keycloak-user mailing list