Nice work Sven! Really like the approach of displaying available IdPs when an email domain is matched to more than one IdP. A great idea that solves my teams problems for handling new users logging in via this route
That extension is exactly what my team was looking for. Also great channel, very helpful to understand and implement advanced IdP concepts. Thanks a lot!
Hi Sven and Niko, I found the content of the video quite informative but I have a doubt. I've configured a realm as an IDP in Keycloak and set up home IDP discovery in the authentication flow. However, when attempting to log in, I'm encountering an 'invalid username and password' error. I'm trying to link a domain to the IDP using the Keycloak UI, but unfortunately, I'm unable to find the option for the same. Please help me on resolving this issue ..
Niko is it possible for you to cover user licensing in keycloak? like each user should have an expiry date and after that they should't be able to login anymore. how do you implement such functionality in keykloak? and big thanks for the training videos.
Multiple approaches: either scan the system wirh a cronjob and deactivate/delete user upon attributes or write a custom authenticator and add it to your flow.