Professional Documents
Culture Documents
Keyclock
Authentication and
Authorization
Keycloak is an open-source Identity and Access Management solution targeted towards modern
applications and services. Keycloak offers features such as Single-Sign-On (SSO), Identity
Brokering and Social Login, User Federation, Client Adapters, an Admin Console, and an Account
Management. Keycloak builds on Industry standard protocols supporting OAuth 2.0, OpenID
Connect, and SAML 2.0. Using industry standard protocols is important from both a security
perspective and in terms of making it easier to integrate with existing and new applications.
Types of Tokens
1. ID Token
2. Access Token
3. Refresh Token
4. Open-id Connect
Set Email
Verification
True Note: Registration/Login page is
accessible without authorization.
Possible to send the info in
Invoking REST API RabbitMQ
Set Email
Verification
False
Do Single Sign-
On in AD
Roles and
integration
User
Mapping
Invoke Keycloak Invoke Keycloak Done here
Return If Email
Verified
using REST API call using REST API call Rigor_Crud
response to to get Customer to update Microservice
Application Detail Customer Detail
Invoke Verify
API in
Keycloak
var client = new HttpClient();
client.DefaultRequestHeaders.Accept.Clear();
client.DefaultRequestHeaders.Accept.Add(
new MediaTypeWithQualityHeaderValue("application/vnd.github.v3+json"));
client.DefaultRequestHeaders.Add("User-Agent", ".NET Foundation Repository Reporter");