避免使用keycloak默认登录页面,而使用项目登录页面 [英] Avoid keycloak default login page and use project login page
问题描述
我正在创建一个angular.js Web应用程序,并正在寻找如何将keycloak
集成到项目中.我已经阅读并观看了许多教程,并且看到其中大多数教程都让用户通过keycloak
的默认登录页面进行登录/注册,然后将其重定向到该应用程序.
I am working on creating an angular.js web application and looking for how to integrate keycloak
into the project. I have read and watched many tutorials and I see that most of them have users logging/registering through the default login page of keycloak
which then redirects to the app.
我设计了自己的登录和注册页面,我想使用它.如何使用它们代替默认的keycloak
.有没有可以调用的API,或者后端可以做到这一点?我还阅读了有一些用于钥匙斗篷的弹簧适配器,我可以使用它们吗?指向任何示例的任何链接都是很好的.
I have designed my own login and registration page which I want to use. How do I use them instead of keycloak
default. Are there any API that I can call or may be my backend would do that? I also read there are spring adapters available for keycloak, can I use them ? Any link to any example would be good.
第二个问题是我在注册时是否可以在keycloak
中添加更多用户详细信息,例如地址,地址,性别?因为我的注册页面需要这些信息.
The second question I have is while registering can I add more user details like address, dob, gender in keycloak
? Because my registration page requires those information.
推荐答案
扩展API角色
POST to your/keycloak/url/auth/realms/master/protocol/openid-connect/token
含数据:
{
client_id : 'Id_of_your_client',
username : 'your_username',
password : '@#$%^&',
grant_type : "password"
}
将为您提供初始访问令牌和刷新令牌
will give you the initial access token and refresh token
和
使用
数据:
{
client_id : 'Id_of_your_client',
// client_secret : 'optional depending on the type of client',
grant_type : "refresh_token" ,
refresh_token : refresh_token_you_got_earlier
}
将提供新的刷新和访问令牌.这些令牌是密钥斗篷检查授权/身份验证的内容.
will give the new refresh and access tokens .These tokens are what keycloak checks for authorization/authentication.
您可以进行自己的登录,并通过REST API将凭据发送到keycloak,一旦您拥有访问令牌,只需将其作为对clocloak保护的资源的任何正在进行的请求的标头放置为
You could make your own login and send the credentials to keycloak via a REST API and once you have the access token , just put it in the header of any ongoing request to a keycloak protected resource as
headers :{
Authorization : 'Bearer ' + access_token_you_got
}
这篇关于避免使用keycloak默认登录页面,而使用项目登录页面的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!