[keycloak-user] Custom Social Login, cache access_token, Enterprise Wechat

Fri Jul 26 10:17:08 EDT 2019

I managed to get infinispan running in customized identity provider, but
apart from predefined caches, I am not able to add new cache:
the error reads:
```
21:59:01,683 ERROR [org.jboss.as.controller.management-operation]
(Controller Boot Thread) WFLYCTL0013: Operation ("add") failed - address:
([("deployment" => "keycloak-server.war")]
) - failure description: {
    "WFLYCTL0412: Required services that are not installed:" =>
["org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso"],
    "WFLYCTL0180: Services with missing/unavailable dependencies" => [
        "jboss.naming.context.java.module.auth.auth.ModuleName is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.app.auth is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.module.auth.auth.Validator is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",

"jboss.deployment.unit.\"keycloak-server.war\".jca.cachedConnectionManagerSetupProcessor
is missing [org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.concurrent.ee.context.config.auth.auth is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.deployment.discovery.\"keycloak-server.war\" is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.module.auth.auth.InAppClientContainer is
missing [org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.deployment.unit.\"keycloak-server.war\".INSTALL is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.app.auth.AppName is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.module.auth.auth.InstanceName is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.module.auth.auth is missing
[org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",
        "jboss.naming.context.java.module.auth.auth.ValidatorFactory is
missing [org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]",

"jboss.deployment.unit.\"keycloak-server.war\".ejb3.client-context.registration-service
is missing [org.wildfly.clustering.infinispan.cache.keycloak.xsyxsso]"
    ]
}
```

How can I set up a new cache in infinispan? What is the proper steps to
create it?

kkzxak47 <kkzxak47 at gmail.com> 于2019年7月25日周四 上午10:56写道：

> Hi,
>   I'm building a SSO service for my company (~1000 employee).
>   After investigation I decided to adopt Keycloak as the core component.
>   We are using Wechat Work as IM tool (https://work.weixin.qq.com/),
> employee DB is based on its Contacts. So it's natural to integrate it as a
> social login into Keycloak SSO service.
>   In the process of implementing the 'WechatIdentityProvider' and
> 'WechatIdentityProviderFactory' classes I encountered some trouble.
>   Just like Twitter / Google and other providers, some of Wechat Work's
> OAuth2 flow is not aligned with standards. For example, the processing of
> retrieving the access_token is relatively independent of other OAuth2 code
> flow, the access_token is valid for 7200 seconds, its API is limited to be
> called 2000 times per day for a single client. We are forced to cache a
> global access_token for each client. I noticed that Keycloak is heavily
> using Infinispan. My question is can I use it for caching access_token too?
> Is it safe to do so? What is your recommendation?
>   And I'm working based on version 6.0.1 in standalone mode, is it
> appropriate?
>
>   My main programming language is not Java by the way. I learned it ~10
> years ago and Spring is new to me. So I'm still learning. It's of great
> help to give relevant document links or code snippets, thanks!
>
>
> Victor
>