[keycloak-user] Keycloak integration with AWS IAM
Bob Dannehl
Bob.Dannehl at deutschebahn.com
Fri May 10 10:01:03 EDT 2019
Hello everybody,
I am currently evaluating, if there is a way to connect our Keycloak to the new IAM Authentication of Amazon RDS (PostgreSQL) in order to isolate databases and get rid of the security impact of long term database credentials. Instead of having a static datasource configuration the Keycloak is registered at AWS IAM as relying party and then would have to get access tokens (later refresh tokens) from IAM in order to access its database. See this link for further information AWS RDS IAM feature: https://aws.amazon.com/about-aws/whats-new/2018/09/amazon-rds-postgresql-now-supports-iam-authentication/?nc1=h_ls
Do you have an idea, if such would work with keycloak out of he box or how to solve it in another way (e.g. SPI)?
Thanks in advance,
Bob
________________________________
Pflichtangaben anzeigen<http://www.deutschebahn.com/pflichtangaben/20190509>
Nähere Informationen zur Datenverarbeitung im DB-Konzern finden Sie hier: http://www.deutschebahn.com/de/konzern/datenschutz
More information about the keycloak-user
mailing list