Alexander Schwartz is a Principal Software Engineer at Red Hat working full time as a Keycloak maintainer and technical team lead. At work and in his spare time he codes for Open Source projects. In previous jobs he worked as a software architect and IT consultant. At conferences and user groups he talks about JavaScript front ends, Java back ends, Kubernetes, performance and how to create great documentation with AsciiDoc and Antora.
A single-sign-on system serves as the gatekeeper for a lot of applications and platforms. Only authenticated and authorized users of your organization or other organizations to access them. The industry standards like OpenID Connect and SAML that describe how applications and single-sign-on interact.
While this sounds straightforward at first, you soon want to customize the user interface of the login screen, add additional checks to the authentication flow and provide the right level of information to each application. Sometimes you need to tailor the setup for an off-the-shelf application or leverage existing security infrastructure like LDAP, Kerberos or other Identity Providers that provide SAML or OpenID Connect.
Keycloak can provide all of that by implementing the standards, offering customizations and providing integrations. The latest releases enhanced its authentication features for Passkeys.
This talk demos different features around authentication and authorization that are provided by Keycloak. It will also look at features of the latest release and the road map ahead.
Searching for speaker images...