Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

how to sync aps(users) with keycloak?

Go to answer
shadyuser
Champ on-the-rise
Champ on-the-rise

‎08-24-2018 03:20 AM

I am using the aps 1.9. i have integrated aps with keycloak. i am able to log in only if  user is available in both aps and keycloak. so, how to sync aps(users) with keycloak?

Labels:
0 Kudos
1 ACCEPTED ANSWER
15 REPLIES 15

Go to answer
bassam_al-saror
Star Collaborator
Star Collaborator

‎08-24-2018 04:47 AM

One way is to configure both APS and Keycloak to sync against an LDAP server.

0 Kudos

Go to answer
shadyuser
Champ on-the-rise
Champ on-the-rise

‎08-24-2018 05:41 AM

hey Bassam Al-Sarori, i am having multiple ldap connected with keycloak. how do i sync in APS here?. ie i have to write custom extension. is there any pointer to do that?

0 Kudos

Go to answer
bassam_al-saror
Star Collaborator
Star Collaborator
In response to shadyuser

‎08-24-2018 06:13 AM

APS doesn't read from multiple LDAP servers so yes you'll need to write a custom extension.

You can implement ExternalIdmSourceSyncService (or extend AbstractExternalIdmSourceSyncService) to write your own sync logic see an example here Example implementation | Alfresco Documentation 

Go to answer
shadyuser
Champ on-the-rise
Champ on-the-rise

‎08-24-2018 06:47 AM

In future, if client wants a social login or some login feature, again i have to do some stuff. 

so instead of writing custom extension to sync multiple ldap, i can sync with keycloak right. From keycloak i can do remaining stuff without affecting existing flow.

thanks for the pointers Bassam Al-Sarori‌ .

0 Kudos

Go to answer
shadyuser
Champ on-the-rise
Champ on-the-rise

‎08-24-2018 08:25 AM

it will be good if you add this feature to aps.

0 Kudos

Go to answer
shadyuser
Champ on-the-rise
Champ on-the-rise

‎08-24-2018 09:35 AM

hi Bassam Al-Sarori‌, this is like repeating the same task(multiple ldap config) in both keycloak and aps. so i don't want to write custom exception to sync multiple ldap. is there any other way?.

0 Kudos

Go to answer
bassam_al-saror
Star Collaborator
Star Collaborator
In response to shadyuser

‎08-28-2018 06:13 AM

Have a look at this post it might be useful

SwazzyNotes, Designs, and SolutionsUser Synchronization in APS from Keycloak 

0 Kudos

Go to answer
shadyuser
Champ on-the-rise
Champ on-the-rise
In response to bassam_al-saror

‎09-05-2018 06:32 AM

hey Bassam Al-Sarori‌, how do i configure super admin user in keycloak ?

i have changed the following properties in activiti-app.properties like below,

admin.email=
admin.passwordHash=
admin.lastname=

admin.group=

In keycloak, i have created super admin  group. am i missing something? feel free to correct me.

0 Kudos

Go to answer
bassam_al-saror
Star Collaborator
Star Collaborator
In response to shadyuser

‎09-05-2018 07:08 AM

The default admin user needs to be created in APS so you need to set those properties. Then create the same user on Keycloak.

0 Kudos
Getting started

Explore our Alfresco products with the links below. Use labels to filter content by product module.

Copyright © 2024 Khoros, LLC