[keycloak-user] Integrating WildFly JavaEE application with Keyclock

[Jeroen Muis]

Hi, 

We are very much interested in this as well, and had some tests done based  on the work of Marek Posolda
https://github.com/mposolda/keycloak-remote-ejb 
This poc is based on direct access grants so no redirects are required.

This seems to work just fine when having a ejb module, but when packaging this inside an EAR we don't seem to be able to get this working any longer. Not sure why yet, as we did not have enough time to fully debug this. Our EAR consists of several ejb modules, wars, etc.


Best regards,
Jeroen Muis,
Copas B.V.
 


-----Original Message-----
From: keycloak-user-bounces at lists.jboss.org [mailto:keycloak-user-bounces at lists.jboss.org] On Behalf Of valsaraj pv
Sent: Thursday, 8 February 2018 10:22
To: keycloak-user at lists.jboss.org
Subject: [keycloak-user] Integrating WildFly JavaEE application with Keyclock

Hi,

Currently our JavaEE application with servlets, EJB, remote EJB & HornetQ messaging using JAAS login module with LDAP back end. I am trying to integrate Keyclock with our WildFly 10.1 server for using identity provider & SSO.

*Source LDAP/DB Sync*
Found that Keycloak supports LDAP sync & we can sync existing user data periofically to Keyclock. Is it possiblr to sync from multiple user data stores as we have to integrate multiple JavaEE web apps?

*JAAS custom login module for Keyclock*
Currently we are using JAAS custom login module for authentication/authorization. Is it possible to user the same or similar login module with Keyclock? We need to avoid redirection to Keyclock login page.
If redirection is must, is there any sample to migrate from JAAS to Keyclock realm?

Thanks!



--
Life is like this: "Just when we get all the answers of life.... God changes the question paper....

Valsaraj Viswanathan
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user