[keycloak-user] GDPR requirements for Keycloak
Tomás García
tomas at intrahouse.com
Fri Dec 15 05:58:44 EST 2017
Hi,
I wonder if you're considering the GDPR requirements which will be active
in May 2018.
For example here's a list:
https://techblog.bozho.net/gdpr-practical-guide-developers/
There's stuff like specific consent for stuff (currently Keycloak have an
all-or-nothing consent screen, it should be per item and these need to be
configured) or allowing users to edit their profile (the account screen
can't be used from a website because there's no redirect to the website
after the user finishes as far as I know - or - at least, having a full API
to let users change their profile from a website without requiring Keycloak
admin rights, just using the bearer token of the user), and a myriad of
needs from this law.
Thanks!
More information about the keycloak-user
mailing list