[wildfly-dev] Keycloak-Elytron secure ejbs

Pedro Igor Silva psilva at redhat.com
Thu May 2 18:32:04 EDT 2019


Hi,

The elytron client configuration (wildfly-config.xml) can be configured to
use the OAUTHBEARER [1]. You also need to configure SASL OAUTHBEARER on the
server so that client and server can negotiate the mechanism.

The client configuration is using client credentials to obtain the token
from Keycloak (or any other OAuth compliant server), but you can also use
resource owner password grant type [2].

Regards,
Pedro Igor

[1] https://gist.github.com/pedroigor/6f8e69d8a31d792af9fc5c67eb6b9cab
[2] https://docs.wildfly.org/16/Client_Guide.html#authentication-client

On Thu, May 2, 2019 at 6:18 AM Besenti Samson <besenti.samson at gmail.com>
wrote:

>
> I am trying to configure elytron in wildfly 16 to secure ejbs using
> keycloak 6.0 that are accessed by a java client. Has anyone done a working
> example of this that I can follow? Specifically by way of the
> standalone.xml config and wildfly-config.xml. I have successfully stepped
> through an example using jboss properties file realm but getting lost when
> it comes to keycloak.
>
> _______________________________________________
> wildfly-dev mailing list
> wildfly-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/wildfly-dev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/wildfly-dev/attachments/20190502/bbc960b4/attachment.html 


More information about the wildfly-dev mailing list