[keycloak-user] Disable logging in via REST API
Lukasz Lech
l.lech at ringler.ch
Thu Jul 4 08:09:24 EDT 2019
Hello,
I'm using keycloak-admin-client library, which AFAIK uses https://www.keycloak.org/docs-api/5.0/rest-api/index.html directly.
I've found out, that 'Direct Grant' flow is triggered and I could create an org.keycloak.authentication.Authenticator that would always call context.failure(), effectively blocking login through REST API for the realm...
This what bothers me is that I have problems finding any documentation how does that Authenticator work and I'm extending the project someone has written and looking what is happening.
Best regards,
Lukasz Lech
-----Original Message-----
From: Dmitry Telegin [mailto:demetrio at carretti.pro]
Sent: Donnerstag, 4. Juli 2019 13:29
To: Lukasz Lech <l.lech at ringler.ch>; keycloak-user at lists.jboss.org
Subject: Re: [keycloak-user] Disable logging in via REST API
Hi Lucasz,
This is probably related to your yesterday's posting, correct? Could you please elaborate on what you mean by "logging into Keycloak via REST API"?
Cheers,
Dmitry Telegin
Carretti Consulting OÜ | Keycloak Consulting and Training Sepapaja 6, Tallinn 15551, Estonia | info at carretti.pro
On Thu, 2019-07-04 at 08:45 +0000, Lukasz Lech wrote:
> Hello,
>
> How to disable logging into Keycloak via REST API, without affecting logging in via browser?
>
> Which URLs I need to block?
>
> I have problem finding out that information...
>
> Best regards,
> Lukasz Lech
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list