Reputation: 1553
Should I only setup Keycloak on application OR Apache
I would like to check if my understanding is correct about the way to use Keycloak.
After Keycloak server is installed and running, we would have 2 options:
- Use the
javascript adapterin the application we want to authenticate - Use the
mod_auth_openidto use Keycloak with Apache webserver
In the case of web application, since it must have an web server, does it mean only option 2 is available? And even if option 1 is available, should I use it?
Upvotes: 0
Views: 399
Answers (1)
Reputation: 31
It depends on the type of your application. If you want to provide your application as SPA (Single Page Application) using JavaScript, JavaScript Adapter will be good option. But if you want to provide it as traditional server-side web application which doesn't support standard federation protocol like OpenID Connect, mod_auth_openidc will fit.
Also keycloak provides several types of client adapters. You can check them with the following document.
https://www.keycloak.org/docs/latest/securing_apps/index.html#supported-platforms
In addition, if your application is already OpenID Connect or SAML 2.0 compliant, you can integrate with keycloak server without any client adapters because it based on open standard protocol which keycloak supports. Please refer the following document to understand securing your application.
https://www.keycloak.org/docs/latest/securing_apps/index.html#overview
Upvotes: 2
Related Questions
- Keycloak client vs user
- Should I use keycloak or not?
- Spring Keycloak authentication - serves both web application and web service
- Keycloak and spring security usage
- Keycloak Authorization - best practice roles vs groups
- Keycloak client deployment best practice
- Setting up Keycloak for authentication
- Keycloak authorization
- KeyCloak should be used as auth server for my users?
- Spring Boot keycloak and basic authentication together in the same project