The few attendants to this talk proofs that we think we are better at security than we really are lol. Very good talk. I’m just getting started with Keycloak and I already want to use it in all of my projects. The policy stuff is crazy useful!
For getting the avatar url in id jwt token, you needed to 1. Create a new client scope or use existing client scope 2. Map the user attribute (avatar url) to the the selected client scope 3. For the selected client, assign the above client scope as default client scope. 4. Now in the jwt id token, avatar url would appear.
what should i do if i want to login and get such response of {access_token, id_token, refresh_token} but also I want to add new object in this response ?
Just so I understand - by following this demo I would need to update all of the UI pages contained in Keycloak so that I can get my application's look and feel - correct? Does that mean I essentially need to maintain 2 sets of code (i.e. my application ui code and the keycloak ui code)? And consequently potentially coordinate my application deployments with re-deployment of Keycloak?
I believe the keycloak customization stuff should be done once, though it might change from app to app, so on that area I guess it will need some customization per-app, but it's still just the GUI, not the whole logic, which might be a bunch of code more than just the GUI.
I love Keycloak but please rewrite it in Golang :) I can not see that Keycloak is eating about 450MB Ram in IDLE by comparing with 20MB of a service in Go.
My first thought too, but then I realized that English is his second language. Cut the dude a break. I'm guessing his English is WAY better than either of our second languages.
@@MotownGuitarJoe My second language should be almost on a similar level but my 3rd not. I think this account here just stole the video and fucked up the title :D