Keycloak: Identity and Access Management
Shriira Press
Stop building login for every app. Add authentication, SSO, and user management with Keycloak — open-source identity and access management.
Welcome to Keycloak: Identity and Access Management.
Keycloak is an open-source Identity and Access Management (IAM) solution — it provides authentication, authorization, single sign-on, and user management for your applications so they don't have to build it themselves. This free book teaches it from the ground up: the identity problem and what Keycloak is, identity concepts and protocols (OAuth 2.0, OpenID Connect, SAML, JWTs), Keycloak's architecture and core concepts (realms, clients, users, roles), realms and clients (organizing identity, registering apps), authentication and single sign-on (login flows, sessions, SSO), OIDC and OAuth in Keycloak (securing frontends and APIs with tokens), users/roles/authorization (RBAC and fine-grained policies), identity brokering and federation (social login, LDAP/AD), security features (MFA, password policies, hardening), and operating Keycloak in practice (deployment, customization, the ecosystem). Ten focused chapters with clear diagrams that demystify modern identity — delegate authentication to a secure, standards-based, central identity provider, and stop reinventing login for every app.
This title is part of the ShriIra library and is free to read in full, right here — our small contribution to making world-class knowledge easy to reach.
A note on reading it: open the Contents menu at the top of the reader to jump between chapters, use the Aa menu to set a comfortable text size, theme (light, sepia, or night), and single- or two-page layout. Your place is saved automatically, so you can always pick up where you left off.
We hope it serves you well.
— Shriira Press