How to Secure Keycloak with HTTPS

When it comes to securing Keycloak, an open-source identity and access management solution, using HTTPS is a crucial step in protecting user credentials and other sensitive data. In this article, we’ll explore the benefits of using HTTPS with Keycloak and provide a step-by-step guide on how to enable HTTPS in your Keycloak installation.

Read more

Configuring OpenId Authorization with Keycloak

OpenID Connect is a widely-used authentication protocol that allows users to authenticate themselves to a relying party (RP) website or application using their existing credentials from an identity provider (IDP). While OpenID Connect is primarily an authentication protocol, it also provides some support for authorization through the use of client resources and policies. In this article, we’ll take a closer look at OpenID Connect client authorization and why it matters.

Read more

Comparing OpenID Connect with OAuth 2.0

OpenID Connect (OIDC) and OAuth 2.0 are two popular protocols you can use for authorization and authentication on the web. Both protocols allow users to securely access resources, but they work in different ways and have different use cases. In this tutorial, we’ll compare OIDC and OAuth 2.0 to help you understand the key differences between the two protocols and when to use each one.

Read more

How to access Keycloak H2 Database

Keycloak stores its data in an embedded H2 database by default, which is a lightweight and easy-to-use database that ships in the the Keycloak distribution. In this article, we will discuss how to access the Keycloak H2 database and perform common tasks such as deleting an user. By the end of this article, you will have a better understanding of how to manage the Keycloak H2 database.

Read more

Installing Keycloak Client adapters on WildFly

This article covers how to install Keycloak Client Adapters on WildFly so that you can let Keycloak manage the whole authentication/authorization of your applications running on WildFly. Please note: If you are running WildFly 25 or above, you can secure your applications with Keycloak using Elytron OpenID Connect which is available out of the box. … Read more

Configuring Keycloak Database

This tutorial will show you three different ways to configure a different database for your Keycloak Identity Provider. Let’s check it out! Configuring a local Keycloak Database So the first way to configure a Keycloak Identity Provider with a Database is by adding a Datasource configuration specific for keycloak. This can be done by setting … Read more

Keycloak quickstart example using CLI

In this tutorial we will learn how to create a quickstart Java EE application secured with Keycloak using its command line interface (kcadm). The requirements to run this tutorial are: A Keycloak server A WildFly Application Server with Keycloak plugin installed You can check this tutorial for more details about the set up of Keycloak … Read more

Securing a MicroProfile application with Keycloak

In this tutorial we will learn how to secure a Microprofile application running with Thorntail runtime and Keycloak.   Keycloak is an Identity and Access Management Server for Modern Applications and Services. In this tutorial we will learn how to delegate a bash Web application authentication (running on WildFly) to a KeyCloak server. First of … Read more