x4k3p
Reputation: 1779
Use cURL with Kerberos to auth on Keycloak
I have following setup given:
- keycloak server at https://auth.example.com
- AD connection with a LDAP provider configuration
- Kerberos options set in LDAP provider configuration
- authentication with any AD user works
- authentication with Kerberos Tickets in browser works
As I know to use cURL with Kerberos auth it looks similar to this:
$ curl --negotiate -u : https://app.example.com/index.html
One can use Resource Owner Password Credentials Grant Type to get an Access-Token in non-interactive manner. But how do I get it using cURL with a Kerberos ticket and Keycloak?
Upvotes: 7
Views: 2809
Answers (1)
Joe
Reputation: 588
There is an example [1] in the official documentation:
curl \
-d "client_id=myclient" \
-d "client_secret=40cc097b-2a57-4c17-b36a-8fdf3fc2d578" \
-d "username=user" \
-d "password=password" \
-d "grant_type=password" \
"http://localhost:8080/auth/realms/master/protocol/openid-connect/token"
- [1] https://www.keycloak.org/docs/latest/securing_apps/index.html#_resource_owner_password_credentials_flow
- [2] https://www.keycloak.org/docs/latest/server_admin/index.html#troubleshooting-2
Upvotes: 1
Related Questions
- Login to Keycloak using API
- Obtaining an access token via cURL
- From openid-configuration to user JWT information by curl
- curl with Kerberos error: option --negotiate: the installed libcurl version doesn't support this
- Keycloak user authorization openid-protocol Rest API
- Keycloak access impersonate API
- Configuring Keycloak through its REST API with cUrl
- How to get client secret from Keycloak using curl?
- cURL authentication with mod_auth_openidc and keycloak
- OAuth2 authorization interface using KeyCloak