Stack Overflow
Stack Overflow

Questions tagged [redhat-sso]

Red Hat Single Sign-On (RH-SSO) is based on the Keycloak project and enables you to secure your web applications by providing Web single sign-on (SSO) capabilities based on popular standards such as SAML 2.0, OpenID Connect and OAuth 2.0. The RH-SSO server can act as a SAML or OpenID Connect-based Identity Provider, mediating with your enterprise user directory or 3rd-party SSO provider for identity information and your applications via tokens.

42 questions
1
vote
0 answers

Keycloak loginless flow doesn't offer user password login for users without a registered security key

According to the documentation, the loginless flow consists only of a single execution: It states that: You can now add the required action WebAuthn Register Passwordless to a user, already known to Keycloak, to test this. The user with…
codependent
  • 23,193
  • 31
  • 166
  • 308
1
vote
0 answers

How to create logic for back button on ftl page for custom authentication flow pages in KeyCloak?

How to do logic for back button on ftl page for custom authentication flow pages in Keycloak? I am using spring boot framework for creating jar for KeyCloak. I am trying to create custom authentication flow by KeyCloak. I have created custom login…
Soham Patel
  • 11
  • 1
1
vote
1 answer

How can we assign a permission to all users in Keycloak Authorization Services policies?

I would like to create a all users policy in Keycloak: How can I specify that this policy is for all users? Using '*' didn't work.
codependent
  • 23,193
  • 31
  • 166
  • 308
1
vote
2 answers

Do Keycloak and its different adapters implement the Openid Connect Backchannel logout spec

Keycloak does support back channel logout, but is it compliant with the Openid Connect backchannel logout draft spec? https://openid.net/specs/openid-connect-backchannel-1_0.html
codependent
  • 23,193
  • 31
  • 166
  • 308
1
vote
0 answers

Keycloak: roles not assigned when user is created via CLI

Running the below commands to import user with roles. ./kcadm.sh config credentials --server http://localhost:8080/auth --realm master --user admin --password [pass] ./kcadm.sh create users -r [realm_name] -f user-admin.json user-admin.json looks…
rok
  • 9,403
  • 17
  • 70
  • 126
1
vote
1 answer

Keycloak multiple sessions for the same username

I've recently configured SSO with Keycloak servlet adapter. The problem is that we have service-to-service communication, which goes with BASIC authentication. Previously, we were using JAAS authentication, therefore the S2S communication was…
Georgi
  • 189
  • 2
  • 12
0
votes
0 answers

User is redirecting to login page after logout, Keycloak, SSO

am using keycloak SSO for login to my application. The issue is very strange, previously everything was working fine and then suddenly the issue occurred. When user hits the logout button user is getting redirected to login page. One thing I have…
Muhammad Haseeb
  • 126
  • 8
0
votes
0 answers

redhat sso version upgrade to 7.6-24

I have upgraded redhatsso from 7.6-23 to 7.6.24 successfully. Everything works fine and looks good but login page UI not looking good, Looks like old, Want to how to fix it or any UI related changes in this redhat sso version.
apcxx
  • 19
  • 1
0
votes
1 answer

How to set Keycloak datasource via environment variables for RHSSO 7.6 image

I'm currently working with RH-SSO 7.6 image in local development. With standard Keycloak images I can configure DB connection to my custom Postgres database using proper environment variables, but I'm not able to reach the same with RH-SSO image. In…
A.Cabb
  • 65
  • 6
0
votes
0 answers

Implement single sign-on using Redhat-SSO for a Linux based QT application

I am trying to implement SSO for a Linux based QT application. In the Redhat SSO documentation it is mentioned as web applications can use Redhat SSO as identity provider (IDP), but I'm interested in SSO for Linux application which has QT as front…
Marlin
  • 1
0
votes
0 answers

Handling Session Timeouts in Server side web applications integrated with Keycloak Java Servlet Adapter

Have Integrated a Java struts based server side application with a keycloak OIDC and Oauth provider. Java servlet adapter mentioned in the…
sreenath
  • 1
  • 1
  • 3
0
votes
1 answer

Keycloak AdminURL infinite redirect loop (nginx proxy)

I configured this setup before, however upon trying to replicate it on a new instance, I am unable to make it work. I am working with the standalone-ha mode, however trying it with standalone does not make a difference. The instance is configured…
gecko
  • 38
  • 8
0
votes
1 answer

Error 400 when trying to reset user password on Red Hat SSO 7.3 (Keycloak) with Java API

I'm trying to create a user with a temporary password on Red Hat Single Sign On 7.3 (Keycloak behind the scene) through Java API. Locally (with standard Keycloak, jboss/keycloak:9.0.0 Docker image), it is working fine. But when deploying the same on…
Ajrarn
  • 48
  • 1
  • 7
0
votes
1 answer

KEYCLOAK - Extending OIDC Protocol | Missing Credentials Tab | Add extra claims in AccessTokenResponse

We are trying to implement SMART On FHIR healthcare authorization protocol specification. This spec is an extension to OIDC (open id connect protocol). In SMART on FHIR, we need to add extra claims called 'patient' with value say '123' in…
NARASIMHA MURTHY
  • 105
  • 1
  • 13
0
votes
0 answers

Is it possible to support an SPA/Ajax Login Form for an Authenticator in Keycloak?

We would like to build an SPA-like login form in Keycloak, which would dynamically show prompts for credential/inputs from the user without having to refresh the page. From what I can see, each Authenticator in Keycloak is expecting a form-POST on…
sherman
  • 159
  • 1
  • 10
1
2
3