Integration with Keycloak IDP

[mvidhu]

P.S. Don't attach files. Please, prefer add code snippets directly in the message body.

We are setting up keycloak as IDP with user federation to Azure AD. We would like to know if Data.all supports keycloak IDP for authentication & authorization of users?

[dlpzx]

Hi @mvidhu, sorry for the late response. Let me understand the situation, do you want to replace Azure AD by Keycloak or would it be an add-on on top of your existing Azure AD server?

For the first situation, from what I am reading in the keycloak docs it allows SAML integration, the cognito docs and this medium post.

One example that looks very similar to what we would need to do to integrate keycloak with Cognito is what they do in AWS Orbit Workbench

If the integration is a AzureAD + Keycloak + Cognito I am going to need more details. Let me know if that helps and let's brainstorm together

[mvidhu]

Sorry for the delay in response. We would like keycloak to be add-on top of our existing Azure AD setup. We want to use keycloak as IDP with authentication federated to Azure AD. We can discuss more over a meeting.

[dlpzx]

Hi @mvidhu, it is never too late :) Release 2.2.0 includes a feature that replaces Cognito completely with your own IdP. It allows more flexibility on how the user information from authentication is retrieved and used for authorization. Take a look at the PR and docs (in deployment guide) and let's have a call to deep dive on your issue.

[noah-paige]

Hi all - giving notice that this issue is planned to be closed tomorrow due to inactivity. Please let us know if you need any other assistance on the above @mvidhu and happy to continue conversation.

Otherwise, thanks for raising this issue!

[noah-paige]

Closing the above issue - please re-open or file a new issue if any additional comments/concerns, thanks!