Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-2072

Allow to configure reauthentication timeout for clients in Keycloak Admin app

    XMLWordPrintable

Details

    • Feature Request
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • Backlog
    • None

    Description

      Add possibility to configure reauthentication timeout for clients in Keycloak admin GUI (for each client independently in client's settings). This will be used as default if no reauth is asked by client on protocol level.

      This is important feature to support long user SSO sessions (eg. weeks or even months)
      with reauthentication for important actions as known from many sites like Googlem LinkedIn, Github etc.

      This configuration option allows protecting Account and keycloak admin applications itself with reauthentication in this scheme, and also allows protecting other clients who can't be updated to force reauth on protocol layer.

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              velias@redhat.com Vlastimil Eliáš
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: