[keycloak-user] keycloak consuming saml

Stian Thorgersen sthorger at redhat.com
Tue Nov 1 05:08:21 EDT 2016

I'm not quite following. Do you have an existing portal where users
authenticate that is using SAML? If so yes you can use identity brokering
to have users authenticated via the SAML IdP and then issue OIDC tokens to
the apps.

On 30 October 2016 at 13:30, java_os <java at neposoft.com> wrote:

> Group
> Portal where users authenticted in adfs and need to add a link to my
> webapp protected by keycloak. Users click on link should trigger a saml
> post into keycloak , consume the assertion and let user in.
> Given this scenario how could i configure keycloak to receive the
> assertion and give my webapp an oidc token. Is this doable? Was looking at
> identity brokering, but this triggers request from keycloak to idp. I
> think my case is idp initiated saml post . is it possible to use id
> brokering in this case, or how does anyone solve this scenario?
> Thanks
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

More information about the keycloak-user mailing list