par janua | Mar 21, 2019 | Gestion des Identités, Open Source, SSO
In this article, we will share how to using apache2 mod_auth_openidc module with Keycloak (OpenID Connect) 1) Presentation The usage of the apache2 mod_auth_openidc module is to act as RP (Relying Party) when discussing with OP (OpenID connect Provider). The apache2...
par janua | Mar 20, 2019 | Gestion des Identités, Open Source, SSO
In this article are exposed some of the key concepts protecting a Keycloak RedHat SSO with a reverse proxy in production. Protecting the keycloak server is crucial. Keycloak server should not be visible from the outside 1) Why adding a reverse proxy The goal of the...
par janua | Fév 19, 2019 | Gestion des Identités, SSO
In this article we share examples of offline token usage in Keycloak. As mentioned previously, it is possible to generate offline either through direct access grant or authorization code flow. Both way are going to be illustrated in this chapter Using offline Token...
par janua | Fév 19, 2019 | Gestion des Identités, SSO
In this article Janua’s CTO shares tips and tricks about understanding token usage in Keycloak Keycloak Token lifecycle is described at: https://www.keycloak.org/docs/latest/server_admin/index.html#_timeouts Token Lifecycle Token lifecycle is defined on a per...
par janua | Fév 19, 2019 | Gestion des Identités, SSO
In this article, we will share tips and tricks about understanding client Authenticator security with Keycloak When people think about using keycloak Authorization code flow,the most straightforward to use it is to use Authoriszation Code Flowwith client ID/Client...
par janua | Fév 8, 2019 | Gestion des Identités, LDAP, Open Source
In this article Janua’s CTO share how to configuring DS389 aka RedHat DS as 2MMR Step 1 – enable Change log (Master M1) Step2 – Enable Replica (Master M1) Step3 – Create replication Manager (Master M1) ldapadd -h localhost -p 2389 -D « Cn=Directory Manager » -w...
