SSO 集成解決方案,Keycloak 1.4.0.Final 發布

jopen 9年前發布 | 7K 次閱讀 Keycloak

Keycloak 是一個為瀏覽器和 RESTful Web 服務提供 SSO 的集成。基于 OAuth 2.0 和 JSON Web  Token(JWT) 規范。最開始是面向 JBoss 和 Wildfly 通訊,但已經計劃為其他諸如  Tomcat、Jetty、Node.js、Rails、Grails 等環境提供解決方案。

Keycloak 1.4.0.Final 發布,值得關注的更新如下:

  • Authentication and Required Actions SPI - We've create SPIs for authentication flows and required actions and made existing flows pluggable. Currently the flows are hard-coded, but can be configured to some extent. In the future we'll make it possible to define your own authentication flows, authenticators as well as required actions.

  • Service account - We've added support for clients to obtain tokens on behalf of themselves. These tokens can be obtained by using the Client Credentials Grant flow. In the future we'll add support for additional mechanisms to authenticate clients.

  • User impersonation - Admins can now impersonate users. This allows admins to login to applications as a specific user without knowing the users credentials.

  • Re-captcha for registration - Re-captcha can be enabled for the registration page.

  • Upgrade to WildFly 9.0.1.Final - Keycloak is now built on top of WildFly 9.0.1.Final.

  • More details on server info page - There's now a bit more details about the Keycloak server on the server info page in the admin console.

  • Improvements to admin console We've had the UXP experts look at our admin console and we've already done some improvements. Expect more fine tuning of the admin console in the future.

更多內容請查看:發行說明

該版本下載請到:Keycloak website

 本文由用戶 jopen 自行上傳分享,僅供網友學習交流。所有權歸原作者,若您的權利被侵害,請聯系管理員。
 轉載本站原創文章,請注明出處,并保留原始鏈接、圖片水印。
 本站是一個以用戶分享為主的開源技術平臺,歡迎各類分享!
  本文地址:http://www.baiduhome.net/news/view/1615954