[keycloak-user] Document how to generate a custom signed JWT when user is authenticated
HILEM Youcef
youcef.hilem at gmail.com
Sat Mar 23 05:06:26 EDT 2019
Our keycloak backend is in Java language that have an official Firebase
Admin SDK
We create custom tokens with Java Firebase Admin SDK.
Yes, another option is to sign in Firebase using additional Identity
Providers (https://github.com/FirebaseExtended/custom-auth-samples).
But for keycloak I do not know yet how to do it.
I will see this example (
https://github.com/FirebaseExtended/custom-auth-samples/tree/master/kakao)
which seems to me well done.
But I prefer the first option with JWT.
Thanks
Youcef HILEM
Le sam. 23 mars 2019 à 06:50, Sebastien Blanc <sblanc at redhat.com> a écrit :
> But this token will still be signed by Keycloak and I. The documentation
> you pointed out says that the token must be signed by the firebase service
> if I remember correctly. Can you add the firebase service as Identity
> provider in Keycloak ? In this case you could maybe use the token exchange
> “internal token to external token”
>
> Le sam. 23 mars 2019 à 03:34, HILEM Youcef <youcef.hilem at gmail.com> a
> écrit :
>
>> Hi,
>> You did not understand my use case.
>>
>> OAuth 2.0 authorization servers provide support for four main grant types
>> according to the OAuth 2.0 specification. It also has the flexibility to
>> support any custom grant types.
>> I do not find documentation that provides instructions on how to implement
>> a custom grant type for Keycloack OAuth 2.0 authorization server and how
>> to
>> extend the behavior of default grant types.
>>
>> My clients are OAuth2 Clients.
>> I want use a custom grant type to generate a Google JWT Token.
>>
>> I found this (https://github.com/looorent/keycloak-configurable-token-api)
>> and
>> I think it looks like what I'm looking for.
>>
>>
>> Thanks
>> Youcef HILEM
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
More information about the keycloak-user
mailing list