0:17 Creating new realm, "demo" 0:40 STMP configuration for "demo" realm 1:23 Creating client for sample application, "JS Console" 1:40 "JS Console" redirects to KeyCloak Login page, but need to configure a user 1:56 Configure realm to enable users to register to "demo" realm 3:07 Token contents - ID token vs Access token 3:43 Adding more content to tokens 4:49 Create Client Scope 7:30 Configure Consent for Client Scope 8:27 Roles 10:07 Groups 11:17 Mapping Group information into the Access token, using "Group Membership", "User Attribute" Protocol Mapper. 12:39 Configuring LDAP as an external store 14:51 Identity brokering feature (GitHub) 17:28 Style & theme configuration 18:24 ID tokens in KeyCloak 19:47 Changing JWT singature algorithm, global or specific to a client 20:52 Changing keys used to sign the tokens, create a new key, deactivate other keys 22:16 Session Management 23:20 Events 24:19 Custom authentication - Magic Link, OTP, etc.
Hello, I set up the configuration as per you show in your video also testing email is working too, But I am not getting basic login page from KeyCloak side instead I'm getting "We are Sorry, Page Not Found "
Andrew, all finished for me on 0:40 as per your example, my smtp setting does not works...I mean with my google credentials...why? I did everything as you are showing.....?
The audio here is better and it seems like this is the only real "how to actually use keycloak" document. The online documentation is pretty rudimentary about installing and securing but no actual "on the spot" how to use. And there you also say something like "oh you can also add this avatar_url as a default attribute which the user can also be asked to provide but I don't have too much time so I'll not tell you how"...
Nice Tutorial to get started with KeyCloak! Thank you! One question - When I integrate with GitHib as an external identity provider, does it create the user in keycloak database as well? What specifications are required to be followed if I have to build my own custom identity provider that manages users in my existing external application/system?
Helloy, i have some question, maybe you can help me) I want create user via keycloak web console, but after creating account, i want that created users choose the password by themselfs, but i don't know, keycloak have some kind functionality or not? I mean maybe keycloak can send email with link for creating new password or somthing like this) in this case admin don't have to manually create temporary password and in my case it's very convenient)
Hi Stian Thorgersen, Thanks for the video on keycloak. I have tried implement in my local but i am getting "invalid request" page instead of login page. Could you please help why i am facing this issue. Do i need to implement anything in my application.
if youre running Keycloak inside Docker, you need to ensure that your keycloak.json config points to there, the demo exposes an 8080 port in localhost, but you cant reach localhost inside a docker container if you are not resolving the name first. But you can also either inspect the docker container using ` docker ps ` to indetify the container id Then ` docker inspect -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' container_name_or_id ` and copy that ip Now just replace the localhost name server in keycloak.json auth url with the container ip and your example should run
Hi, Could you please tell me what will be the application url. If my client id is "myapp" then i am trying localhost/myapp.But it is givng 404 error on the browser
0:17 Creating new realm, "demo"
0:40 STMP configuration for "demo" realm
1:23 Creating client for sample application, "JS Console"
1:40 "JS Console" redirects to KeyCloak Login page, but need to configure a user
1:56 Configure realm to enable users to register to "demo" realm
3:07 Token contents - ID token vs Access token
3:43 Adding more content to tokens
4:49 Create Client Scope
7:30 Configure Consent for Client Scope
8:27 Roles
10:07 Groups
11:17 Mapping Group information into the Access token, using "Group Membership", "User Attribute" Protocol Mapper.
12:39 Configuring LDAP as an external store
14:51 Identity brokering feature (GitHub)
17:28 Style & theme configuration
18:24 ID tokens in KeyCloak
19:47 Changing JWT singature algorithm, global or specific to a client
20:52 Changing keys used to sign the tokens, create a new key, deactivate other keys
22:16 Session Management
23:20 Events
24:19 Custom authentication - Magic Link, OTP, etc.
God bless you!!
Doing God's work.
thank you buddy
Good tutorial and video. I got overall idea and usage of KeyCloak. thank you so much
Hello,
I set up the configuration as per you show in your video also testing email is working too, But I am not getting basic login page from KeyCloak side instead I'm getting "We are Sorry, Page Not Found "
Please help me to get atleast basic Login Page from KeyCloak side
Amazing videos! Congrats
Andrew, all finished for me on 0:40 as per your example, my smtp setting does not works...I mean with my google credentials...why? I did everything as you are showing.....?
excellent one
Could you please tell me how to set up role attributes in keycloak and that attributes need to get in id token... Thanks in advance...
The audio here is better and it seems like this is the only real "how to actually use keycloak" document.
The online documentation is pretty rudimentary about installing and securing but no actual "on the spot" how to use.
And there you also say something like "oh you can also add this avatar_url as a default attribute which the user can also be asked to provide but I don't have too much time so I'll not tell you how"...
is there any way i can make a user act as admin or a super user who can add/delete other users?
awesome video sir....plz make video how to add external mysql database in keycloak plz sir...thank you
very helpful
Is it possible to remove the `/` in front of group name? 12:05 shows the group name as `/mygroup`. How can I only use `mygroup` here?. Thanks
@Stian Thorgersen
How to assign specific role for new user when he is being registered?
There is an opttion "Default Role". Define your role as Default Role and all new Users will have this role automatically asigned, when created.
Nice Tutorial to get started with KeyCloak! Thank you! One question - When I integrate with GitHib as an external identity provider, does it create the user in keycloak database as well? What specifications are required to be followed if I have to build my own custom identity provider that manages users in my existing external application/system?
Hi Stian, could you please share a video or documentation on how to build keycloak brokering to another keycloak instance?
Hei Stian !
Du er en legende !! :)
Hi Lee,
I need help, i m new for this tool, so how we can implement user login or registration page coul you please help me on that
How to create customized login screen
??
how to add a select list on user registration form? the data of select list must come from an external api
AMazing Tutorial. Please add X509 authentication! 🙂
Helloy, i have some question, maybe you can help me) I want create user via keycloak web console, but after creating account, i want that created users choose the password by themselfs, but i don't know, keycloak have some kind functionality or not? I mean maybe keycloak can send email with link for creating new password or somthing like this) in this case admin don't have to manually create
temporary password and in my case it's very convenient)
How we can assign role to user from angular or java?
Hi ,
Can we export realm with groups , roles and users ?
How can i add admin role to master user , i have deleted from keycloak console
Hi Stian Thorgersen,
Thanks for the video on keycloak. I have tried implement in my local but i am getting "invalid request" page instead of login page. Could you please help why i am facing this issue. Do i need to implement anything in my application.
if youre running Keycloak inside Docker, you need to ensure that your keycloak.json config points to there, the demo exposes an 8080 port in localhost, but you cant reach localhost inside a docker container if you are not resolving the name first.
But you can also either inspect the docker container using ` docker ps ` to indetify the container id
Then ` docker inspect -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' container_name_or_id ` and copy that ip
Now just replace the localhost name server in keycloak.json auth url with the container ip and your example should run
Hi, Could you please tell me what will be the application url. If my client id is "myapp" then i am trying localhost/myapp.But it is givng 404 error on the browser
Can we get your example app?
for future reference: I found it github.com/stianst/devnation-deep-dive
Again... skipped how we generate a client auth url...
is there any way i can make a user act as admin or a super user who can add/delete other users?
Maybe you can add a role with admin privilege and assign it to the user.