Video/Keycloak with HTTPS & mutual TLS / X.509 authentication

From PKC
Jump to navigation Jump to search

Köbler, Niko (Oct 17, 2020). Keycloak with HTTPS & mutual TLS / X.509 authentication. local page: Niko Köbler (@dasniko). 


This video quoted Werner Vogels[1], CTO of AWS says:

Dance like no one is watching. Encrypt like everyone is!

📖 Chapters:

  1. 0:00 - Intro
  2. 0:29 - Encrypt Everything!
  3. 1:40 - Setting up TLS in Keycloak
  4. 7:29 - x509.sh script
  5. 8:17 - (Client) Authentication with mutual TLS and X.509 certificates
  6. 14:28 - Configure the "X509/Validate Username Form"
  7. 18:00 - Actual authentication with the X.509 certificate in the browser
  8. 22:30 - Wrap up

A book[2] on Keycloak is also available.

References

  1. Vogels, Werner (Dec 2, 2017). AWS re:Invent 2017 Keynote - Werner Vogels. local page: Amazon Web Services. 
  2. Thorgersen, Stian; Silva, Pedro Igor (May 2021). Keycloak-Identity and Access Management for Modern Applications. local page. ISBN 978-1-80056-249-3. 

Related Pages