Configuring Okta IDP with keycloak
Recently I started using Keycloak, My requirement is that I want to configure Okta as an IDP. I was able to do that but the problem is each IDP will have an alias which should be unique for that realm in Keycloak. Also what I noticed was the redirect url looked something like this :
http://localhost:8080/realms/<realm-name>/broker/<idp-alias-name>/endpoint
The problem I have with this is that I have already integrated my application with Okta and it's in their marketplace as well. Also, we have to mention the redirect URIs ( where Okta should reply to ) in the ISV portal.
When my clients integrate my app from the Okta marketplace they will get a client-id and a client-secret. Since I am using Keycloak I can store them in the provider table, but according to Keycloak's redirect URL, it will be different for different integrations because of which I have to update the ISV form on each new integration. I might be missing something OR can I have a single redirect URL for multiple integrations? Can anyone help me with this?
For reference, the ISV form looks like this,
The Keycloak URL looks like this,
I didn't see the OIN form fully, in Okta OIN form they have a feature that is "varying redirect-url per tenant". It's visible in the image posted above.
If I enable that then basically I can have any amount of redirect URI's.
- Angular component rendered two times
- Keycloak admin client responds with Bad Request to attempt to list realms
- How to set up AWS Client VPN with Keycloak as IdP
- KeyCloak Java Service Account Create User
- SpringBoot OAuth2 with Keycloak not returning mapped Roles as Authorities
- Keycloak, not returning access token if update password action selected
- Infinispan String Property Replacer Error In Keycloak 26.0.2
- java.lang.IllegalArgumentException: Unable to resolve the Configuration with the provided Issuer
- portainer keycloak 20 oauth login "unauthorized" / "Unable to login via OAuth"
- Vue.js: Incorrectly installed `keycloak-js`
- Keycloak - how to allow linking accounts without registration
- client-credentials is unsupported_grant_type
- Keycloak using docker, for frontend and backend authentication
- How to implement Spring Boot Security OAuth2 with Keyclaok and Swagger
- Keycloak add extra claims from database / external source with custom protocol mapper
- Keycloak-Remix integration: where should I place the checks?
- Oauth2 Bff unable to connect with keycloak using reverse proxy
- Is it possible to disable HTTP for a Keycloak instance in Azure Container Apps?
- Role based authorization using Keycloak and .NET core
- Failed to make identity provider oauth callback: javax.net.ssl.SSLHandshakeException:
- Keycloak: The token has invalid signature
- Access user info from SecurityIdentity using quarkus-oidc
- Keycloak client vs user
- Keycloak - reorder first-time login steps
- NoClassDefFoundError : BearerTokenServerAuthenticationEntryPoint
- How to access spring websession when creating a bean in webflux
- Keycloak 20.0.2: I am not seeing the realm roles in user Role Mapping
- Keycloak authorization on behalf of another user
- Export users and roles from Keycloak
- Keycloak: Client in non-master realm gets 403 Forbidden when using User Search API