Recent Blog Posts
I often get asked by customers or from folks of the community, if there is a built-in option for SMS-based two-/multi-factor-authentication (2FA/MFA) in Keycloak. Unfortunately it is not! Keycloak only ships with a built-in 2FA option for Google Authenticator (and compatible apps). But why is that?Read more »
Keycloak has this feature of “events”. There are two kinds of events: login events and admin events. Login events are emitted every time a user-related action around authentication is executed, e.g. login, logout, code-to-token exchanges, registrations, etc. Also errors of these actions are emitted as an event. The event itself then contains some useful information about the action and the corresponding user and/or client. Admin events are emitted on every change of a resource via the Admin-API, no matter if via the web console, REST api, CLI, etc.Read more »
In the past few days, I’ve been implementing a Keycloak Testcontainer for easy usage in your integration tests of your Java/JVM based applications and services.
The package is publicly available at Maven Central and is compatible with Java 8 and up.
For those of you, who don’t know about neither Testcontainers nor Keycloak, I have a very short introduction to both of them, before I’ll explain my
In my previous post, I wrote about AWS Lambda Layers, which are the base for the new AWS Lambda Custom Runtime-API. Well, not exactly the base, the API can be used also without layers. But it makes more sense to use a custom runtime definition with Lambda Layers instead of baking it into each and every function. Let’s get into detail.Read more »