[keycloak-user] Social Login, whitelist company domains (google)
Stian Thorgersen
sthorger at redhat.com
Tue Feb 9 03:36:09 EST 2016
We already have that through custom authentication flows. See
http://keycloak.github.io/docs/userguide/keycloak-server/html/auth_spi.html
Whitelist company domain can be done by customizing the first social login
flow.
On 9 February 2016 at 09:27, David Illsley <davidillsley at gmail.com> wrote:
> Are there any thoughts or plans to implement something like auth0 rules
> [1] which would allow easy customisaton of things like this (the checking
> part anyway)?
>
> [1] https://auth0.com/docs/rules
>
> On Tue, Feb 9, 2016 at 8:11 AM, Stian Thorgersen <sthorger at redhat.com>
> wrote:
>
>> We don't currently have support for this. However, it would be a nice
>> addition and you're not the first person to ask.
>>
>> Google provides an hd query parameter that allows specifying the domain.
>> However, it also needs to be verified on the server side in the callback.
>>
>> On 9 February 2016 at 02:18, Jesse Chahal <jessec at dnbcloud.com> wrote:
>>
>>> Hi,
>>>
>>> So I've been experimented with the social login, mostly the google one,
>>> and am trying to figure out how to allow whitelisting of domains for people
>>> using google apps for business. I think it is common practice to use social
>>> login for companies if they are using services from said provider. Is there
>>> a way to limit google's social login to only those who are using email's
>>> from specific domains? If not would be the best way for me to go around
>>> implementing this?
>>>
>>> _______________________________________________
>>> keycloak-user mailing list
>>> keycloak-user at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>
>>
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160209/547af226/attachment.html
More information about the keycloak-user
mailing list