Keycloak: Hide IDP for certain client

I have several client applications behind my keycloak server.

Only for some of them the users should be able to login via external idp. For the rest of the clients the external idp should be hidden on the keycloak login page.

How can I configure the idp to only be available for certain clients?

Solution

While I didnt found the actual solution I figured out a workaround.

I can configure a custom theme per client. So I designed a login theme that doesnt display the external idps. Now some clients show the original theme while others show the custom theme without external idps...

Keycloak Admin Console Login - Infinite Loop
How to set up AWS Client VPN with Keycloak as IdP
keycloak-angular 26 is unable to find keycloak-js
Unable to start keycloak with preview or scripts features enabled
How to use Keycloak for user self-registration
Keycloak Account API returns Unauthorized 401 with token from user logged in via my spring client
Configure reverse-proxy for Keycloak docker with custom base URL
Unable to authenticate the login of application user using Keycloak
Angular-Keycloak is not adding the bearer token by default to my http requests
Keycloak: Role based client log-in access restriction for users
In Keycloak, how do I customize my login theme so that social providers are at the top?
Java, Keycloak: How to programatically create a Realm and set userProfile attributes in it
How to retrieve the code verifier using Keycloak from Angular
Is it possible to have a Spring-boot application with a JWT-Decoder and as oauth2Login?
Client secret not provided in request error
Implementing OIDC with Authorization Code Flow on API Gateway using Keycloak as SSO provider
Spring Boot with Spring Security and Keycloak only providing Anonymous Authentication Token
Use Keycloak Spring Adapter with Spring Boot 3
Validating Username and Password in Keycloak
SAML configuration broke after upgrade from 7.55.8 to 7.98.8
Javascript Error when using Keycloak with Artemis for Management Console access
Why is Keycloak resulting in "Cookie not found" error after IDP initiated login?
Configure Keycloak to Encrypt SAML Assertions with AES-128-GCM Instead of AES-128-CBC
Transforming LDAP group memberships to SAML Attributes in Keycloak
retrieve google refresh token in keycloak
Use Terraform to assign realm-management role to service account user in Keycloak
How to restrict access to Keycloak admin console to a specific IP/IP range?
Keycloak "invalid credentials" error after login when access through Load Balancer
As in keycloak version 26.0.6. how to enable Allow Token Exchange (to update tokens)
Removed create-realm in Keycloak from admin role - how do I reassign it?