Menu
▾
▴
resteasy-developers
|
From: Bill B. <bb...@re...> - 2014-01-23 18:23:17
|
Keycloak is an SSO auth server and appliance for web applications and RESTful web services. It can act as a Social Broker for Social Login via Google, Twitter, and Facebook. It has a nice admin console UI for managing a variety of security metadata and much much more... Please view my blog for more details on features, videos, downloads, and documentation: http://bill.burkecentral.com/2014/01/23/keycloak-sso-released-alpha-1/ -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com |
|
From: Adrian M. <adr...@gm...> - 2014-01-25 18:12:30
|
Hi! Do you plan to support permission management where apps provide a set of permissions and the administrator defines a specific permissions for a give role(s)? On Thu, Jan 23, 2014 at 8:23 PM, Bill Burke <bb...@re...> wrote: > Keycloak is an SSO auth server and appliance for web applications and > RESTful web services. It can act as a Social Broker for Social Login > via Google, Twitter, and Facebook. It has a nice admin console UI for > managing a variety of security metadata and much much more... > > Please view my blog for more details on features, videos, downloads, and > documentation: > > http://bill.burkecentral.com/2014/01/23/keycloak-sso-released-alpha-1/ > > -- > Bill Burke > JBoss, a division of Red Hat > http://bill.burkecentral.com > > > ------------------------------------------------------------------------------ > CenturyLink Cloud: The Leader in Enterprise Cloud Services. > Learn Why More Businesses Are Choosing CenturyLink Cloud For > Critical Workloads, Development Environments & Everything In Between. > Get a Quote or Start a Free Trial Today. > > http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk > _______________________________________________ > Resteasy-developers mailing list > Res...@li... > https://lists.sourceforge.net/lists/listinfo/resteasy-developers > |
|
From: Bill B. <bb...@re...> - 2014-01-26 14:46:41
|
So far the idea is roles and permissions are the same thing. What we're planning to add is the idea of a "composite role". A composite is a role that can be made up of other roles. Its can by mapped to a user and the user will dynamically inherit the fine-grain roles that are contained in the "composite role". Does that make sense? BTW, we should take this to the keycloak list eventually if we discuss more. On 1/25/2014 1:12 PM, Adrian Mitev wrote: > Hi! Do you plan to support permission management where apps provide a > set of permissions and the administrator defines a specific permissions > for a give role(s)? > > > On Thu, Jan 23, 2014 at 8:23 PM, Bill Burke <bb...@re... > <mailto:bb...@re...>> wrote: > > Keycloak is an SSO auth server and appliance for web applications and > RESTful web services. It can act as a Social Broker for Social Login > via Google, Twitter, and Facebook. It has a nice admin console UI for > managing a variety of security metadata and much much more... > > Please view my blog for more details on features, videos, downloads, and > documentation: > > http://bill.burkecentral.com/2014/01/23/keycloak-sso-released-alpha-1/ > > -- > Bill Burke > JBoss, a division of Red Hat > http://bill.burkecentral.com > > ------------------------------------------------------------------------------ > CenturyLink Cloud: The Leader in Enterprise Cloud Services. > Learn Why More Businesses Are Choosing CenturyLink Cloud For > Critical Workloads, Development Environments & Everything In Between. > Get a Quote or Start a Free Trial Today. > http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk > _______________________________________________ > Resteasy-developers mailing list > Res...@li... > <mailto:Res...@li...> > https://lists.sourceforge.net/lists/listinfo/resteasy-developers > > > > > ------------------------------------------------------------------------------ > CenturyLink Cloud: The Leader in Enterprise Cloud Services. > Learn Why More Businesses Are Choosing CenturyLink Cloud For > Critical Workloads, Development Environments & Everything In Between. > Get a Quote or Start a Free Trial Today. > http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk > > > > _______________________________________________ > Resteasy-developers mailing list > Res...@li... > https://lists.sourceforge.net/lists/listinfo/resteasy-developers > -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com |
|
From: Adrian M. <adr...@gm...> - 2014-01-28 11:52:19
|
In previous projects I had a requirement for fine-grained security control where the a specific permissions were allowed for a given role. Each permission corresponded to a functionality or an action that the user could perform. Another usefull functionalities for a SSO server: * ability for the users to login using digital certificates (smart cards) * easy customization of the login page without having to rebuild the entire application (probably by externalizing it outside the war file) * i18n of the ui * Account locking * Account disabling by administrator BTW will the functionality be based on PicketLink? On Sun, Jan 26, 2014 at 4:46 PM, Bill Burke <bb...@re...> wrote: > So far the idea is roles and permissions are the same thing. What we're > planning to add is the idea of a "composite role". A composite is a > role that can be made up of other roles. Its can by mapped to a user > and the user will dynamically inherit the fine-grain roles that are > contained in the "composite role". > > Does that make sense? > > BTW, we should take this to the keycloak list eventually if we discuss > more. > > On 1/25/2014 1:12 PM, Adrian Mitev wrote: > > Hi! Do you plan to support permission management where apps provide a > > set of permissions and the administrator defines a specific permissions > > for a give role(s)? > > > > > > On Thu, Jan 23, 2014 at 8:23 PM, Bill Burke <bb...@re... > > <mailto:bb...@re...>> wrote: > > > > Keycloak is an SSO auth server and appliance for web applications and > > RESTful web services. It can act as a Social Broker for Social Login > > via Google, Twitter, and Facebook. It has a nice admin console UI > for > > managing a variety of security metadata and much much more... > > > > Please view my blog for more details on features, videos, downloads, > and > > documentation: > > > > > http://bill.burkecentral.com/2014/01/23/keycloak-sso-released-alpha-1/ > > > > -- > > Bill Burke > > JBoss, a division of Red Hat > > http://bill.burkecentral.com > > > > > ------------------------------------------------------------------------------ > > CenturyLink Cloud: The Leader in Enterprise Cloud Services. > > Learn Why More Businesses Are Choosing CenturyLink Cloud For > > Critical Workloads, Development Environments & Everything In Between. > > Get a Quote or Start a Free Trial Today. > > > http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk > > _______________________________________________ > > Resteasy-developers mailing list > > Res...@li... > > <mailto:Res...@li...> > > https://lists.sourceforge.net/lists/listinfo/resteasy-developers > > > > > > > > > > > ------------------------------------------------------------------------------ > > CenturyLink Cloud: The Leader in Enterprise Cloud Services. > > Learn Why More Businesses Are Choosing CenturyLink Cloud For > > Critical Workloads, Development Environments & Everything In Between. > > Get a Quote or Start a Free Trial Today. > > > http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk > > > > > > > > _______________________________________________ > > Resteasy-developers mailing list > > Res...@li... > > https://lists.sourceforge.net/lists/listinfo/resteasy-developers > > > > -- > Bill Burke > JBoss, a division of Red Hat > http://bill.burkecentral.com > > > ------------------------------------------------------------------------------ > CenturyLink Cloud: The Leader in Enterprise Cloud Services. > Learn Why More Businesses Are Choosing CenturyLink Cloud For > Critical Workloads, Development Environments & Everything In Between. > Get a Quote or Start a Free Trial Today. > > http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk > _______________________________________________ > Resteasy-developers mailing list > Res...@li... > https://lists.sourceforge.net/lists/listinfo/resteasy-developers > |
|
From: Bill B. <bb...@re...> - 2014-01-28 13:43:01
|
On 1/28/2014 6:52 AM, Adrian Mitev wrote: > In previous projects I had a requirement for fine-grained security > control where the a specific permissions were allowed for a given role. > Each permission corresponded to a functionality or an action that the > user could perform. > Is it ok for roles/permissions to be the same thing as I expressed? Or do you need a separation? keycloak.org/docs > Another usefull functionalities for a SSO server: > * ability for the users to login using digital certificates (smart cards) On the roamap for 1.0. > * easy customization of the login page without having to rebuild the > entire application (probably by externalizing it outside the war file) Style sheet plugin is in the works and may even be in the next release. > * i18n of the ui On the roadmap > * Account locking > * Account disabling by administrator > Account management is already available. > BTW will the functionality be based on PicketLink? > Maybe. We might use it to federate LDAP/AD. We're using an extension hybrid of OAuth2/JWT/JSE right now with plans to fully support OpenID connect. If you want to help drive requirements, ping us on the keycloak-dev list. Bill -- Bill Burke JBoss, a division of Red Hat http://bill.burkecentral.com |
Thanks for helping keep SourceForge clean.
X