[keycloak-user] Keycloak Authorizaion with SaaS
Andy Stebbing
andy.stebbing at adelaide.edu.au
Thu Feb 16 19:38:28 EST 2017
Is it possible to use an SPI component to handle at least coarse grained authorisation? It can intercept the authentication to check the policy via the API?
cheers
andy
On Thu, 2017-02-16 at 18:16 -0500, Bill Burke wrote:
> See Keycloak Proxy. We haven't really touched that code in years
> though. Instead we're recommending you proxy your app using Apache +
> mod-auth-mellon (SAML) or mod-auth-openidc (OIDC).
>
>
> On 2/16/17 5:08 PM, Adam Keily wrote:
> >
> > Hi Guys,
> >
> > Just wondering if it's possible to do any implement any keycloak authorization controls for a SaaS app scenario where we don't have the ability to modify
> > the application?
> >
> > e.g. We want to allow or deny access to an application based on role but no code can be added to the app.
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list