authenticationkeycloakopenid-connectidentity
Keycloak: How to hook into Google Identity Provider to add roles programmatically
We use Keycloak with Google IDP to authenticate. When a user log in using Google, I want to hook into the flow to add some roles for that user session.
What should I do? I have tried creating to custom Authenticator but not sure this is the possible or best practice.
Please help! Thanks!
Solution
When a user log in using google, I want to hook into the flow to add some roles for that user session.
Not sure what you do mean by roles to the user session. However, if you mean add roles to the user yes you can do that out of the box for instance:
- Go to your Realm;
- Select Identity Providers;
- Select you google IDP;
- Switch to the tab Mappers;
- Click on [Create]
- Select as a
Mapper Type:Hardcoded Role - Select the Role;
- Click on [save].
Here is the list of Mapper Types available for the Google IDP:
- Invalid Login Credentials in Oracle APEX After Resetting the Password from the Administration Panel in ADB-S
- Problem with PgBouncer auth method not same type
- AppwriteException: User (role: guest) missing scope (account), not able to get account after creating a session
- Woocommerce authentication with phone number OR normal login
- NestJS JWT Strategy requires a secret or key
- How to change mongodb password in docker compose
- 404.17 error - requested content appears to be script
- who creates the passkey (and how many will be created?)
- Enter Key with Two Login Controls
- JWT generate token with algorithm ES256
- Why can't Google Drive be mounted anymore and shows a browser popup instead of a link for authorization?
- Enable interactive render mode on Blazor templates accounts pages
- how do i link login form to html website on computer
- How to update database of parent class and [Owned] attribute class type in Entity Framework Core 8.0.8
- How to debug Bearer error="invalid_token"
- How to allow multiple accounts on the same browser in flask?
- Kubernetes Authentication no re-create token
- Handshake error in ASP.NET Core 6 application using Negotiate authentication
- What should we store in the session when using session-based authentication?
- Use React Authentication with .NET backend?
- How to authenticate large numbers of amazon S3 get requests
- Can a client-side login be safe?
- .NET Core Multi Tenancy authentication
- I'm trying to connect with my Heroku app and when I enter my email and password, it's asking me "Enter the code generated by your authenticator app."
- How to generate COMMON KEY RING to Share cookies across subdomains?
- django after submit login info, does not lead to intended detail view page
- Getting OAuth code challenge on loopback server
- Login with Windows challenge goes in loop in ASP .Net app
- Unable to login to GitHub account even with correct credentials
- 10 second delay between login and shell prompt.