| description |
|---|
This guide shows how to set-up Keycloak identity provider with Aidbox |
-
Click on the dropdown in the top-left corner where it says
Master, then click onCreate Realm\ (1) (2) (1).png)
-
Pul the name of your realm to the
Realm nameinput (2) (1).png)
 (1) (2) (1).png)
 (2) (1).png)
- Click the
Clientsmenu item in the left sidebar
 (1) (1).png)
-
Then click the
Create clientbutton\ (1).png)
-
Enter the client data\
 (1).png)
-
Check the
Client authenticationcheckbox\ (1).png)
-
Add
<aidbox-url>/auth/callback/keycloaktoValid redirect URIsfield.\ (1).png)
 (1).png)
 (1).png)
 (1).png)
 (1).png)
- Open REST console in AidboxUI and create IdentityProvider resource
POST /IdentityProvider
scopes:
- profile
- openid
system: keycloak
authorize_endpoint: <keycloak-url>/realms/<your-realm>/protocol/openid-connect/auth
token_endpoint: <keycloak-url>/realms/<your-realm>/protocol/openid-connect/token
userinfo_endpoint: <keycloak-url>/realms/<your-realm>/protocol/openid-connect/userinfo
userinfo-source: id-token | userinfo-endpoint
client:
id: <your client id>
secret: <your client secret>
resourceType: IdentityProvider
title: Keycloak
active: true
id: keycloakYou can find client secret on Clients details page under Credentials tab
 (1).png)
Go to your Aidbox base URL, you will be redirected to the login page - you should see "Log in with Keycloak" button. Press this button and log in with Keycloak user into aidbox. This user will be logged into Aidbox Console, but without any permissions. Read more in Access Control Section about permissions.