Skip to content
/ quetz_keycloak_auth Public

Use Keycloak as authentication provider for Quetz server

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

wint3ria/quetz_keycloak_auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
quetz_keycloak_auth
quetz_keycloak_auth
 
 
tests
tests
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 
setup.py
setup.py
 
 

Repository files navigation

quetz_keycloak_auth plugin

This is a plugin to use with the quetz package server. It implements a Keycloak authenticator using the OpenID protocol. Supported keycloak version: 18.0.1

Installing

To install use:

pip install .

Example config.toml section for Quetz server

Assuming that you are using the "master" realm and you implemented a "quetz" confidential OpenID client:

[keycloak]
url = "http://mydomain.com"
realm = "master"
client_id = "quetz"
client_secret = "myKeycloakClientSecret"
scope = "email profile"

Limitations

  • Make sure your users have a user name, login, and email defined in your realm. The authenticator will fail otherwise. This is a Quetz requirement to have these fields correctly filled.
  • The Avatar is not working. Keycloak does not provide avatars by default.
  • This module usage is limited to OpenID clients, but it could be extended

I am open to PRs and issues

About

Use Keycloak as authentication provider for Quetz server

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages