Hi to all,
we are verifying/evaluating REST implementation with Coldbox and would like to know about experience with implementing cbsecurity for KeyCloak. I’ve read it is possible with any identity provider, but would like to know if there is already some experience available to share? Thanks
Hi @Andreas . One of our guys Jon Clausen (@jclausen) has used it already with CBSecurity and it was a seamless integration. He can attest to the usage and how they used it. However, it was pretty seamless.
@Andreas Since Keycloak passes on its authentication data as a header, you would simply need to have an onRequestCapture interception that grabs the header data and handles the process of authentication from that data. You should be able to handle this with your normal cbSecurity implementation, and then just set your relocation URL for the authentication failure to the Keycloak entrypoint.