{"id":26939294,"url":"https://github.com/sevensource/magnolia-module-keycloak-security","last_synced_at":"2025-04-02T14:17:41.807Z","repository":{"id":57740668,"uuid":"96454278","full_name":"sevensource/magnolia-module-keycloak-security","owner":"sevensource","description":"Keycloak SSO integration for Magnolia CMS 5.5, 5.6","archived":false,"fork":false,"pushed_at":"2018-02-17T17:29:54.000Z","size":38,"stargazers_count":2,"open_issues_count":0,"forks_count":1,"subscribers_count":4,"default_branch":"master","last_synced_at":"2024-04-16T10:59:09.210Z","etag":null,"topics":["jaas","keycloak","magnolia","magnolia-cms","sso"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/sevensource.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2017-07-06T17:14:31.000Z","updated_at":"2022-08-29T19:02:46.000Z","dependencies_parsed_at":"2022-08-25T19:20:43.086Z","dependency_job_id":null,"html_url":"https://github.com/sevensource/magnolia-module-keycloak-security","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensource%2Fmagnolia-module-keycloak-security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensource%2Fmagnolia-module-keycloak-security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensource%2Fmagnolia-module-keycloak-security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/sevensource%2Fmagnolia-module-keycloak-security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/sevensource","download_url":"https://codeload.github.com/sevensource/magnolia-module-keycloak-security/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246828477,"owners_count":20840474,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["jaas","keycloak","magnolia","magnolia-cms","sso"],"created_at":"2025-04-02T14:17:40.833Z","updated_at":"2025-04-02T14:17:41.798Z","avatar_url":"https://github.com/sevensource.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![GitHub Tag](https://img.shields.io/github/tag/sevensource/magnolia-module-keycloak-security.svg?maxAge=3600)](https://github.com/sevensource/magnolia-module-keycloak-security/tags)\n[![Maven Central](https://img.shields.io/maven-central/v/org.sevensource.magnolia/magnolia-module-keycloak-security.svg?maxAge=3600)](http://search.maven.org/#search%7Cga%7C1%7Cg%3A%22org.sevensource.magnolia%22%20AND%20a%3A%22magnolia-module-keycloak-security%22)\n[![License](https://img.shields.io/github/license/sevensource/magnolia-module-keycloak-security.svg)](https://github.com/sevensource/magnolia-module-keycloak-security/blob/master/LICENSE)\n\n\nmagnolia-module-keycloak-security\n================================\n\n[Keycloak](http://www.keycloak.org/) SSO/IAM integration for [Magnolia](http://www.magnolia-cms.com) 5.5, 5.6\n\nThis module delegates authentication - in addition to Magnolias builtin authentication mechanisms - to Keycloak.\n\n\nThis module delegates authentication - in addition to Magnolias builtin authentication mechanisms - to Keycloak.\n\n\n**Contributions welcome!**\n\nInstallation\n=============\n* create a client in Keycloak with *Direct Access Grants* enabled\n* export the configuration in *Keycloak OIDC JSON* format from the *Installation* tab\n* save the configuration file into your projects classpath, i.e. `src/main/resources/keycloak.json`\n* configure `src/main/webapp/WEB-INF/config/jaas.config` to include the KeycloakAuthenticationModule:\n```\nmagnolia {\n  info.magnolia.jaas.sp.jcr.JCRAuthenticationModule optional realm=system;\n\n  org.sevensource.magnolia.keycloak.security.KeycloakLoginModuleAdapter requisite realm=external skip_on_previous_success=true;\n  info.magnolia.jaas.sp.jcr.JCRAuthorizationModule required;\n};\n```\n\n* for further JAAS configuration options, see\n  - http://docs.oracle.com/javase/8/docs/api/javax/security/auth/login/Configuration.html\n  - https://documentation.magnolia-cms.com/display/DOCS/NTLM+Connector+module\n  - https://documentation.magnolia-cms.com/display/DOCS/LDAP+Connector+module\n  - https://documentation.magnolia-cms.com/display/DOCS/CAS+module\n  - http://docs.oracle.com/javase/8/docs/technotes/guides/security/jaas/JAASRefGuide.html\n\nConfiguration\n=============\nAll additional configuration is stored in Magnolias JCR.\n\n* login into magnolia using the `superuser` account\n* go into Configurations App and navigate to `/modules/keycloak-security/config` and add your keycloakConfigFile, i.e. `classpath:keycloak.json`\n* the module features a RoleMapper, which maps Keycloak roles to Magnolia roles. It is configured in `/modules/keycloak-security/config/roleMapper`.\n* the module installs a UserManager into `/server/security/userManagers/external` which can be used as an extension point for customisation\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsevensource%2Fmagnolia-module-keycloak-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsevensource%2Fmagnolia-module-keycloak-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsevensource%2Fmagnolia-module-keycloak-security/lists"}