The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 19 Java Keycloak Projects
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
sirix
SirixDB is an an embeddable, bitemporal, append-only database system and event store, storing immutable lightweight snapshots. It keeps the full history of each resource. Every commit stores a space-efficient snapshot through structural sharing. It is log-structured and never overwrites data. SirixDB uses a novel page-level versioning approach.
-
keycloak-config-cli
Import YAML/JSON-formatted configuration files into Keycloak - Configuration as Code for Keycloak.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
spring-boot-web-application-sample
Real World Spring Boot Web Application Example with tons of ready to use features
-
keycloak-extensions-demo
Demos, examples and playground for Keycloak extensions, providers, SPI implementations, etc.
-
keycloak-home-idp-discovery
Keycloak: Home IdP Discovery - discover home identity provider or realm by email domain
-
springboot-keycloak-openldap
The goal of this project is to create a simple Spring Boot REST API, called simple-service, and secure it with Keycloak. Furthermore, the API users will be loaded into Keycloak from OpenLDAP server.
-
keycloak-mail-whitelisting
Keycloak extension to whitelist email adresses domain when users register
-
SpringBootMicroservices
Spring Boot Microservice Example(Eureka Server, Config Server, API Gateway, Services , RabbitMq, Keycloak)
-
spring-boot-auth-keycloak
SpringBoot REST API real world example with Liquibase, Keycloak auth, OpenLDAP sync, Activemq, elasticsearch, monitoring with prometheus and grafana
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
In this article we'll be using Keycloak to secure a Vue.js Web application. We're going to leverage oidc-client-ts to integrate OIDC authentication with the Vue app. The oidc-client-ts package is a well-maintained and used library. It provides a lot of utilities for building out a fully production app.
I get what you are trying to do, but it feels a bit insecure. Why not use an OSS passwordless project like https://github.com/supertokens/supertokens-core/ or https://github.com/teamhanko/hanko
We're using a similar trie structure as the main document (node) index in SirixDB[1]. Lately, I got some inspiration for different page-sizes based on the ART and HAMT basically for the rightmost inner pages (as the node-IDs are generated by a simple sequence generator and thus also all inner pages (we call them IndirectPage) except for the rightmost are fully occupied (the tree height is adapted dynamically depending on the size of the stored data. Currently, always 1024 references are stored to indirect child pages, but I'll experiment with smaller sized, as the inner nodes are simply copied for each new revision, whereas the leaf pages storing the actual data are versioned themselfes with a novel sliding snapshot algorithm.
You can simply compute from a unique nodeId each data is assigned (64bit) the page and reference to traverse on each level in the trie through some bit shifting.
[1] https://github.com/sirixdb/sirix
Most of the time nowadays, I prefer offloading this to an identity provider, using OpenID Connect or soon Federated Credential Management (FedCM), even if that means shipping an identity provider as part of the deliverables (I generally go with Keycloak, with keycloak-config-cli to provision its configuration). I'm obviously biased though as I work in IT services, developping software mainly for intranets/extranets, and companies now increasingly have their own identity providers or at a minimum have that in their roadmap. So YMMV.
I haven't used Keycloak radius plugin but seems like it is active on github. Keycloak works with a lot of reverse proxies including traefik, caddy, and nginx.
https://github.com/trodix/duckcloud-server-core https://github.com/trodix/pdf-sign https://github.com/trodix/spring-boot-auth-keycloak https://github.com/trodix/activemq-jms-client https://github.com/trodix/clipystream
Java Keycloak related posts
- Securing Vue Apps with Keycloak
- User Management and Identity Brokering for On-Prem Apps with Keycloak
- Navigating Identity Authentication: From LDAP to Modern Protocols
- Ask HN: No-code, simple-setup user management
- Top 6 Open Source Identity and Access Management (IAM) Solutions For Enterprises
- Keycloak open redirect: wildcard redirect URIs can be exploited to steal tokens
- What Is OIDC?
-
A note from our sponsor - WorkOS
workos.com | 26 Apr 2024
Index
What are some of the best open-source Keycloak projects in Java? This list will help you:
Project | Stars | |
---|---|---|
1 | Keycloak | 19,857 |
2 | SuperTokens Community | 11,898 |
3 | sirix | 1,079 |
4 | testcontainers-spring-boot | 829 |
5 | keycloak-config-cli | 671 |
6 | yas | 393 |
7 | keycloak-restrict-client-auth | 256 |
8 | spring-boot-web-application-sample | 254 |
9 | keycloak-extensions-demo | 246 |
10 | keycloak-home-idp-discovery | 205 |
11 | keycloak-radius-plugin | 179 |
12 | scim-for-keycloak | 177 |
13 | springboot-keycloak-openldap | 134 |
14 | keycloak-mail-whitelisting | 88 |
15 | keycloak-kafka | 82 |
16 | SpringBootMicroservices | 78 |
17 | DuoUniversalKeycloakAuthenticator | 42 |
18 | spring-boot-auth-keycloak | 5 |
19 | keycloak-email-link-auth | 2 |
Sponsored