- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 03:20 AM
I am using the aps 1.9. i have integrated aps with keycloak. i am able to log in only if user is available in both aps and keycloak. so, how to sync aps(users) with keycloak?
- Labels:
-
Alfresco Process Services
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-28-2018 06:13 AM
Have a look at this post it might be useful
SwazzyNotes, Designs, and SolutionsUser Synchronization in APS from Keycloak
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 04:47 AM
One way is to configure both APS and Keycloak to sync against an LDAP server.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 05:41 AM
hey Bassam Al-Sarori, i am having multiple ldap connected with keycloak. how do i sync in APS here?. ie i have to write custom extension. is there any pointer to do that?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 06:13 AM
APS doesn't read from multiple LDAP servers so yes you'll need to write a custom extension.
You can implement ExternalIdmSourceSyncService (or extend AbstractExternalIdmSourceSyncService) to write your own sync logic see an example here Example implementation | Alfresco Documentation
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 06:47 AM
In future, if client wants a social login or some login feature, again i have to do some stuff.
so instead of writing custom extension to sync multiple ldap, i can sync with keycloak right. From keycloak i can do remaining stuff without affecting existing flow.
thanks for the pointers Bassam Al-Sarori‌ .
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 08:25 AM
it will be good if you add this feature to aps.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-24-2018 09:35 AM
hi Bassam Al-Sarori‌, this is like repeating the same task(multiple ldap config) in both keycloak and aps. so i don't want to write custom exception to sync multiple ldap. is there any other way?.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-28-2018 06:13 AM
Have a look at this post it might be useful
SwazzyNotes, Designs, and SolutionsUser Synchronization in APS from Keycloak
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎09-05-2018 06:32 AM
hey Bassam Al-Sarori‌, how do i configure super admin user in keycloak ?
i have changed the following properties in activiti-app.properties like below,
admin.email=
admin.passwordHash=
admin.lastname=
admin.group=
In keycloak, i have created super admin group. am i missing something? feel free to correct me.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎09-05-2018 07:08 AM
The default admin user needs to be created in APS so you need to set those properties. Then create the same user on Keycloak.