How to use keycloak admin key for OpenID exit requests

Question

How to use keycloak admin key for OpenID exit requests

JBoss keycloak offers an admin URL in client settings where you can respond to push events or other events. Sorry, I cannot find documentation on how to use this url? Can you give me a hint if this is so? part of the OpenID Spec or if the Doc API exists for this.

In particular, I want to know how I can implement a client endpoint that responds to exit or cancellation requests from the keyclayak server.

KC documentation on admin URL: http://keycloak.imtqy.com/docs/userguide/keycloak-server/html/applicationClustering.html#admin-url-configuration

Thanks Christian

+5

openid logout keycloak

Christian kaiser Feb 29 '16 at 16:27

source share

1 answer

ahus1 · Accepted Answer · 2016-03-19T20:23:49+0000

AFAIK Using an admin URL is Keycloak-specific, not part of Open ID Connect or OAuth.

I suppose you need to take a look at the code, i.e. PreAuthActionsHandler # handleRequest processes URLs ending in k_logout and k_push_not_before .

The easiest way to handle these events is to use the Keycloak client adapter. An adapter (available for Jetty, Tomcat, and others) will automatically handle this for you. Just provide any URL for your deployed application, and the client adapter will do the rest.

How to use keycloak admin key for OpenID exit requests

More articles: