I have a frontend React application in the visual part of which I want to protect with Keyclock. I also have an admin panel - node js of the application whose routes I also want to protect using Keycloak.
Can I create just one Realm for them in Keycloak in order to use just one token?
Or what are the best practices for this?
Thanks for any information!
Related
So my project has got a two asp.net projects. One is for showing date(User Interface) and the another one is API(for background processes like login, database calls and etc.). Right now my app has Username and Password feature to login. I have setup a startup class in my API which authenticates the user and pass the user token. Now I want to add a feature to login through Azure portal.
Can anyone suggest me a good practice in this situation? Like I don't want to change my code and just add a feature. Should I make changes in API or Web or Both? Meanwhile I was reading about expose api in app registration. Will it be appropriate to use it just for login purposes?
Azure AD supports OAuth2, OIDC and SAML. See more information here. It is probably best to introduce the mechanism through the API first, since it would apply to the frontend as well (though slight modifications may be required there as well).
I'm working on a project that uses Bluemixes APP-ID for authentication and are using Node.js for our backend. What I want to do is to be able to login with the App-ID authentication (that uses passport.js) and use this token in my Angular5 project and from there be able to store new user-specific attributes.
What is the proper way of doing this?
Thankful for any answers :)
After some research, it seems like the way forward is to create an endpoint in the Node.js that one then uses with the angular project. Just make sure the endpoint also is protected by the webAppStrategy if using that.
i m using AngularJS and nodeJS application for UI development.
Using the Keycloak for user authentication purpose with the help of keycloak-connect libraray.
with this everything works fine.
But i want to achieve multi tenancy in keycloak,
Based on a particular realm i should be able to redirect to a particular keycloak login page.
Can we load keycloak.json file dynamically based on a particular realm using nodeJS
Are there any library available to achieve the same.
Thank you,
Vinay
I have an API in node js that i use as source of a mobile app.
Is there some way to keep the data available only to my app and not for other apps?
Thanks!
Take a look at this. See if you can use the user agent to restrict the access to your app only.
Of course it is easy for someone to modify the user agent and make a request. If you are concerned about this you might need better form of authentication.
We have 3 nodejs web application running on same domain name on same vps with multiple subdomains and implementing passport authentication for each. We wanted single user be able to access all application with single account and for that we have added accounts.example.com as fourth application solely for purpose of account management. The requirement is - once user is authenticated in accounts.example.com, how to enable user to access rest of the three web application with that session.
you can share your session in redis-server.if you use express,you can try to use connect-redis
https://github.com/visionmedia/connect-redis
Try Hands on CanSecurity... It tops the chart for node.js Single sign on.. Hope this proves fruitful https://github.com/deitch/cansecurity