[keycloak-user] Keycloak-Headerbased authentication

[Thomas Darimont]

I think you can add claim mappers in the client configuration in Keycloak
which can then be exposed as headers.

See mod_auth_oidc configuration for claim mapping.

Cheers,
Thomas
Am 05.07.2016 11:33 vorm. schrieb "Subrahmanyam BV" <bvs78 at rediffmail.com>:

>
> Hi Thomas,
>     Thanks for the quick reply . Here is the scenario that I am looking
> for. Once the user gets authenticated, is there a way to pass some
> attributes of the user (say for example, company, emailid, status of the
> user etc...) as a part of the response headers?
>
> Regards,
> Subrahmanyam.
>
>
>
> From: Thomas Darimont <thomas.darimont at googlemail.com>
> Sent: Tue, 05 Jul 2016 11:54:44
> To: Subrahmanyam BV <bvs78 at rediffmail.com>
> Cc: keycloak-user <keycloak-user at lists.jboss.org>
> Subject: Re: [keycloak-user] Keycloak-Headerbased authentication
>
> Hello,
>
> I'm not familiar with siteminder and quickly googled
> https://docops.ca.com/ca-single-sign-on-12-52-sp1/en/configuring/web-agent-configuration/web-application-protection/default-http-headers-used-by-the-product
>
> Based on that I think that mod_auth_oidc might do what you want.
>
>
> https://github.com/keycloak/securing_apps_guide/blob/master/topics/oidc/mod-auth-openidc.adoc
>
>
> https://github.com/thomasdarimont/keycloak_mod_auth_oidc_example/blob/master/README.md
>
> Cheers,
> Thomas
> Am 05.07.2016 6:44 vorm. schrieb "Subrahmanyam BV" <bvs78 at rediffmail.com>:
>
>> HI,
>>     Just wanted to know whether keycloak supports header-based
>> authentication as supported by siteminder. Please let me know on this.
>>
>> Regards,
>> Subrahmanyam.
>>
>>
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160705/a2014a55/attachment.html