Skip to content
Advertisement

How to customize sso(single sign on) by keycloak?

sorry for my poor english… I ‘ll do my best to write question.

Basically, keycloak provide loginPage where login form has a some name and value parameter determined by keycloak (forexample session_code, excustion, client_id, tab_id). this way is Server side randering(SSR).

However, I want to login process with keycloak in API way. In this case, it’s not possible to use those parameter.

How to use apis below to login?

enter code here:8180/auth/realms/{realm}/login-action/authenticate enter code here:8180/auth/realms/{realm}/protocol/openid-connect/certs enter code here:8180/auth/realms/{realm}/protocol/openid-connect/token

Advertisement

Answer

It’s not a good practice from the security point of view to host your login page somewhere else. It would be better to allow Keycloak to have control over the login process so that the integrity of the overall process would be kept. But in case you really need to do that, you can have your own UI hosted somewhere else and send the credentials you received from the user to the Keycloak via OAuth password grant type. It’s not recommended and is going to be deprecated. I suggest you to check the recommended approaches mentioned here.

User contributions licensed under: CC BY-SA
3 People found this is helpful
Advertisement