Keycloak User federation using existing MySQL database for users authentication

Sagar Chilukuri picture Sagar Chilukuri · Apr 29, 2018 · Viewed 17.2k times · Source

I am trying to setup Keycloak server for our organisation. I have couple of questions.

  1. How can we use our existing user database to authenticate users - User Federation. Keycloak only has LADP/Kerberos options. Is there any custom plugin which can be used for MySQL user authentication or can we use existing connectors itself (LDAP/Kerberos) via some adapter for the database?
  2. Is it possible to have multiple Identity providers within Keycloak environment - (Have Keycloak as IDP for few services, while Keycloak Google IDP for other services).

I have followed the official documentation, but for some reason not able to view the content of the link. Any helpful links to proper guide would be great.

Answer

tom picture tom · May 2, 2018

You should implement your own user storage SPI to integrate your MySQL db as an external user storage db

https://www.keycloak.org/docs/latest/server_development/index.html#_user-storage-spi