SSO 集成解決方案,Keycloak 1.6.0.Final 發布
Keycloak 是一個為瀏覽器和 RESTful Web 服務提供 SSO 的集成。基于 OAuth 2.0 和 JSON Web Token(JWT) 規范。最開始是面向 JBoss 和 Wildfly 通訊,但已經計劃為其他諸如 Tomcat、Jetty、Node.js、Rails、Grails 等環境提供解決方案。
主要功能:
-
SSO and Single Log Out for browser applications
</li> -
Social Broker. Enable Google, 非死book, Yahoo, 推ter social login with no code required.
</li> -
Optional User Registration
</li> -
Password and TOTP support (via Google Authenticator). Client cert auth coming soon.
</li> -
Customizable themes for user facing pages
</li> -
OAuth Bearer token auth for REST Services
</li> -
Integrated Browser App to REST Service token propagation
</li> -
OAuth 2.0 Grant requests
</li> -
CORS Support
</li> -
CORS Web Origin management and validation
</li> -
Completely centrally managed user and role mapping metadata. Minimal configuration at the application side
</li> -
Admin Console for managing users, roles, role mappings, applications, user sessions, allowed CORS web origins, and OAuth clients.
</li> -
Deployable as a WAR, appliance, or an Openshift cloud service (SaaS).
</li> -
Supports JBoss AS7, EAP 6.x, and Wildfly applications. Plans to support Node.js, RAILS, GRAILS, and other non-Java applications.
</li> -
Javascript/HTML 5 adapter for pure Javascript apps
</li> -
Session management from admin console
</li> -
Revocation policies
</li> -
Password policies
</li> -
OpenID Connect Support
</li> </ul> Keycloak 1.6.0.Final 發布,主要更新如下:-
SAML SP - in the past we only had client libraries for OpenID Connect, now we also have client libraries for SAML
</li> -
Offline Tokens - if your applications need long term access outside of the users session you should take a look at the new offline tokens support we've added
</li> -
Client Registration - we introduced a new rest api that can be used to automate the registration of clients, this includes a java client library. This feature will be further polished in a future release, including documentation and examples
</li> -
Import Clients in Admin Console - it's now possible to import clients through the admin console using the Keycloak JSON client representation or OpenID Connect descriptions
</li> -
Added Root URL to Clients - we've added a root url to clients. For clients that have a root url defined you can use relative urls for redirect uris and other urls
</li> -
Internationalization support in Admin Console - we've added support for internationalization of the Admin Console. Around half the pages now support translation and the rest will be added in the next release
</li> </ul>更多內容請看:發行說明。
下載地址:Keycloak homepage。本文由用戶 jopen 自行上傳分享,僅供網友學習交流。所有權歸原作者,若您的權利被侵害,請聯系管理員。轉載本站原創文章,請注明出處,并保留原始鏈接、圖片水印。本站是一個以用戶分享為主的開源技術平臺,歡迎各類分享!
-