[keycloak-user] SSO in web and desktop application
Emanuele Gesuato
Emanuele.Gesuato at finantix.com
Fri Apr 6 12:38:02 EDT 2018
Hi Luis,
thanks for your feedback.
Is there any way to use some access token in order to identify the current
user ?
let me recap.
I have a web application and a "desktop" application they are both
different but they share the same set of users and they are both in the
same keycloak realm.
When user is logged to web application I would like to trigger some
authentication mechanism in order to let user automatically logged when he
opens the desktop application.
I am using keycloak 3.4.3 with tomcat7 adapter. Both the web application
and the server side application of the "desktop" one uses tomcat7 as
servlet container (but they are different instances). Of course keycloak
server is the same for both.
I am not sure how a servlet filter can help me solve this issue ... as I
am using the standard tomcat7 keycloak adapter.
Thanks for any help,
Emanuele
From: Luis Rodríguez Fernández <uo67113 at gmail.com>
To: Emanuele Gesuato <Emanuele.Gesuato at finantix.com>
Date: 06/04/2018 17:28
Subject: Re: [keycloak-user] SSO in web and desktop application
Hello Emanuele,
OK, I see. So if I understand correctly you have "converted" your webapp
in a desktop application using something like this
https://applicationize.me/ in a dedicated browser with some restrictions.
The problem here is that you are requesting the application from a
completely different client, it would be the same if you open an incognito
window in your browser after login in the siteA.
I have done a quick test with one of our SAML applications and I am
redirected to the login page of our SSO. After authentication the app
works perfectly fine.
Perhaps you could try to configure that dedicated browser to automatically
use the windows/kerberos credentials of the logged user...
Cheers,
Luis
ps: the servlet filter can work in any servlet container. I am
successfully using it in tomcat 9 :)
2018-04-06 12:38 GMT+02:00 Emanuele Gesuato <Emanuele.Gesuato at finantix.com
>:
sorry for my email issue
*****************
Hi there,
client-server app is a browser application where we are using the
keycloak-saml tomcat7 adapter.
Your link refers to a java servlet application that doesn’t have an
adapter for that servlet platform.
Am I missing something in your answer ?
thanks,
Emanuele Gesuato
Software specialist
Mobile: +39 335 757 3556 | Email: emanuele.gesuato at finantix.com | skype:
emanuelegesuato_work
CONFIDENTIALITY NOTICE - The information contained in this communication
is intended solely for the use of the individual or entity to whom it is
addressed and others authorized to receive it. It may contain confidential
or legally privileged information. If you are not the intended recipient
you are hereby notified that any disclosure, copying, distribution or
taking any action in reliance on the contents of this information is
strictly prohibited and may be unlawful. If you have received this
communication in error, please notify us immediately by responding to this
email and then delete it from your system. Finantix is neither liable for
the proper and complete transmission of the information contained in this
communication nor for any delay in its receipt.
From: Subodh Joshi <subodhcjoshi82 at gmail.com>
To: Emanuele Gesuato <Emanuele.Gesuato at finantix.com>
Cc: keycloak-user <keycloak-user at lists.jboss.org>
Date: 06/04/2018 12:11
Subject: Re: [keycloak-user] SSO in web and desktop application
Sent by: keycloak-user-bounces at lists.jboss.org
Emanuele Gesuato Look like some issue with your email client/server.
On Fri, Apr 6, 2018 at 3:21 PM, Emanuele Gesuato <
Emanuele.Gesuato at finantix.com> wrote:
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
--
Subodh Chandra Joshi
subodh1_joshi82 at yahoo.co.in
http://www.trendsinnews.com
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
--
"Ever tried. Ever failed. No matter. Try Again. Fail again. Fail better."
- Samuel Beckett
More information about the keycloak-user
mailing list