Thanks for the tutorial niko! Can you please make a tutorial on the updated version of keycloak like 19.0 or something! would highly appreciated thanks once again! :)
I've mostly been able to complete this on the newer quarkus docker but for some reason am failing when I go to validate the x509 certificate in the browser. When you created your user (client) certificate, did you do anything special to import it into firefox/chrome?
The current Quarkus distribution provides other ways to configure the server with certificates, keystore and truststore. See the official guides for more info.
Great video man! I just have one question about keycloak: I have an oracle database with their respective tables, one of them is about users which can login to my react app and make different operations. My question is, how can I match my users table of oracle with the users that keycloak provide me? Best regards! Pd: I saw all your videos about react and keycloak!
Either implement a User Storage SPI to use your existing DB as a user base and to authenticate user against this base, or you'll have to match the authenticated user from any claim in the identity_token/access_token to your user base.
On newer versions there is no button add execution, hope you can update with a newer video for the same x509 authentication, and how to use Digital Signature certificate from another CA
Nice video, my only constructive criticism would be that your head is in the way for some of the stuff you try to show. Other than that nice job, thank you!
Hi, your video is very interesting, I wanted to know if you are making a video on how to install keycloack on AWS, that would be very interesting to watch.
I am glad you are doing videos on keykloak. I have also started learning it. I have really enjoyed your videos.
Amazing work much love from 🇿🇦
Many thanks for the video - very detailed and super helpful! :)
Thank you very much for the useful video!
Thanks for the video. Good job !
An additional one for "OAuth 2.0 Mutual TLS Client Certificate Bound Access Token" would also be great :-)
¡Gracias!
Thanks a lot! Great Video
A very informative presentation - thanks!
thank you for explanation
Thanks for the tutorial niko! Can you please make a tutorial on the updated version of keycloak like 19.0 or something! would highly appreciated thanks once again! :)
tks very much
Thank you
Is it ok for the openid-connect certs api call to br publicly accessible?
I've mostly been able to complete this on the newer quarkus docker but for some reason am failing when I go to validate the x509 certificate in the browser. When you created your user (client) certificate, did you do anything special to import it into firefox/chrome?
How do you implement mtls when KeyCloak is behind a proxy? Eg Traefik.
The proxy has to forwared the certificate data in the headers and Keycloak has to fetch the information from there. See the docs for details.
Is there a way to know If the user logged in with a certificate on application level?
How to make it works using the latest version? It’s seems that the certificates are being ignored on the yml file
the certificate always indicates that it is not trusted. How to solve this?
Because its self-signed. Did you install the public key in your browser?
Is there a route to handle x509 registration?
Thanks for the video, but one question: if we do not use JBOSS, how could we use the x509.sh script?
The current Quarkus distribution provides other ways to configure the server with certificates, keystore and truststore. See the official guides for more info.
Great video man!
I just have one question about keycloak: I have an oracle database with their respective tables, one of them is about users which can login to my react app and make different operations. My question is, how can I match my users table of oracle with the users that keycloak provide me? Best regards!
Pd: I saw all your videos about react and keycloak!
Either implement a User Storage SPI to use your existing DB as a user base and to authenticate user against this base, or you'll have to match the authenticated user from any claim in the identity_token/access_token to your user base.
@@dasniko You are awesome! It works now! Thank you!
the 509 script doesn't work for the keycloak-x, right?
Yes, this is legacy specific.
On newer versions there is no button add execution, hope you can update with a newer video for the same x509 authentication, and how to use Digital Signature certificate from another CA
Nice video, my only constructive criticism would be that your head is in the way for some of the stuff you try to show. Other than that nice job, thank you!
sir how can i get tls.crt and tls.key in active directory?
Hi, your video is very interesting, I wanted to know if you are making a video on how to install keycloack on AWS, that would be very interesting to watch.