nEver forced to login on all clients with keycloak SSO. This has to do with your Authentication flow. Under Browser flow -> Forms should be alternative not Required
Category: Keycloak
The documentation for setting up an OpenIDC identity provider / authentication method for Harbor Registry can be found in the harbor docs. Harbor has supported OIDC since version 1.8. Importantly: You can change the authentication mode from database to OIDC only if no local users have been added to the database. If there is at […]
First thing to do is get familiar with keycloak. once you are happy it might be useful take a look at the keycloak quickstarts. They seem to have all the examples and samples on getting going with keycloak. In particular you want to look at the keycloak kubernetes examples For posterity I will show the […]
In Rancher 2.1.0 they added support for SAML authentication with Keycloak. What this means is Rancher will use a Keycloak realm to authenticate users. This means that there is one place to manage users for a host of your applications. It also means that if they have logged on to the realm with their browser […]