Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-15260

Add the ability to secure the management console with OIDC

    XMLWordPrintable

Details

    Description

      While working on EAP7-1540, we determined that some things should be out of scope and added as a separate enhancement. This RFE is to track the further enhancements that should be added:

      • Add the ability to secure the admin console with OpenID Connect
      • Add the ability to configure a policy-enforcer in the deployment configuration (if it makes sense to do so - this is specific to Keycloak)
      • Consider adding support for RP-Initiated Logout (https://openid.net/specs/openid-connect-rpinitiated-1_0.html)

      The last two bullets here will likely be split out into separate issues. WFLY-15260 will focus specifically on securing the admin console.

      Attachments

        Issue Links

          is depended on by

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) HAL-1804 Support for Keycloak SSO using Wildfly OIDC Client

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved
          relates to

          Feature Request - Feature requests from customers and/or users WFCORE-6352 Add the ability to secure the management interface using a virtual HTTP authentication factory if available

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Feature Request - Feature requests from customers and/or users WFLY-14017 Native support for OpenID Connect

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              fjuma1@redhat.com Farah Juma
              fjuma1@redhat.com Farah Juma
              Votes:
              3 Vote for this issue
              Watchers:
              10 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: