Recent Blog Posts
KEYCLOAK Update Email Feature
Finally there’s an update process in Keycloak that allows users to update their email address only when the new address will be confirmed by clicking on a link. See this short video how this feature will be enabled and used.
Read more »KEYCLOAK Recovery Authentication Codes
Having MFA for users signing-in is more than a good idea. But what if they forgot or loose their MFA device? Or the data on the smartphone app is lost? Then it’s good if you can provide an alternative sign-in method with recovery codes as a second factor. Keycloak comes with this option out-of-the-box! You just have to enable the feature and configure the authentication flow appropriately. See this video for all the details you have to know!
Read more »KEYCLOAK Magic Login Link - Passwordless Authentication
Sometimes you need a way to give your Keycloak users the ability to authenticate but without maintaining passwords. The users just entering their email address and get mailed a link which authenticates them immediately. Some kind of magic happens 🙌 This way of passwordless is no less secure then remembering a password. Depending on the security of the mailboxes, it might become even more secure. See the video for more details on this.
Read more »KEYCLOAK REALMS - What they acutally are and how to use them for Multi-Tenancy
Keycloak Realms are one of the most misunderstood concepts. Often (SaaS-)companies want to use realms as a discriminator for Multi-Tenancy. But this is not always the best approach.
Read more »Keycloak 17 is out - Quarkus is now the default way to go!
Keycloak Version 17 has just been released. The default Keycloak distribution is now Quarkus based, so make sure to find your migration path accordingly and in-time! From the Keycloak Blog Post:
Read more »All Blog Posts / Archive
Read all of my blog posts, find them either by tag or chronological: