[keycloak-user] Login via Magic URL

Bruno Oliveira bruno at abstractj.org
Fri Oct 26 10:24:11 EDT 2018


Hi Thomas,

Stian explored this some time ago
https://www.youtube.com/watch?v=oyUsI3QgEq8. Maybe you can find some
inspiration here:
https://github.com/stianst/keycloak-experimental/tree/master/magic-link

On Fri, Oct 26, 2018 at 11:11 AM Thomas Richner <thomas.richner at oviva.com>
wrote:

> Hi All,
>
> I'm trying to lower the barrier for users by sending them a 'magic'
> link to login without a password into a mobile app.
>
> The general flow would be as following:
> 1. backend requests 'single use token' from Keycloak via API
> 2. backend sends email with this token to user via e.g. email as part
> of a magic link
> 3. user opens the link on a mobile device
> 4. the uri scheme/domain is registered in the mobile OS for a specific
> app, app gets opened
> 5. mobile app exchanges 'single use token' for a refresh token
> 6. user is logged in :)
>
> As I understand there is no such flow available in Keycloak. Looking
> at the SPI interfaces one might be able to implement something like
> this by adding custom API endpoints and ActionTokenHandler.
>
> Since I doubt I'm the first one to explore magic deep links with
> Keycloak, did anybody already implement that? Did I miss a feature
> that already exists? Is there an easier way to achieve this with
> Keycloak?
>
> Cheers,
> Thomas
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>


More information about the keycloak-user mailing list