airavata-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Marcus Christie (JIRA)" <>
Subject [jira] [Commented] (AIRAVATA-2407) Keycloak: how to restrict authentication methods allowed
Date Fri, 02 Jun 2017 12:32:04 GMT


Marcus Christie commented on AIRAVATA-2407:

A response for the users list:
Hi Marcus,

Both should be possible. For 1) have a look at
and for 2) look at

Best regards,

Mit freundlichen Grüßen / Best regards

Sebastian Schuster


Looking at the docs, setting a default provider would redirect automatically from the login
page to the default identity provider. It's not quite the same as disabling username/password
authentication, but for all intents and purposes, I think it accomplishes the same thing.
This way there would be no way that a user could login with a username and password.

> Keycloak: how to restrict authentication methods allowed
> --------------------------------------------------------
>                 Key: AIRAVATA-2407
>                 URL:
>             Project: Airavata
>          Issue Type: Bug
>          Components: Security
>            Reporter: Marcus Christie
>            Assignee: Marcus Christie
>             Fix For: 0.18
> In Keycloak we would like to be able to enable CILogon but disable username/password
> From Eroma's notes:
> {quote}
> If we need to restrict one authentication method in a gateway, need to find out how to
configure this. Currently we haven’t found out how to enable only CILogon (In keycloak the
default setting is both CILogon and account creation to he available).
> {quote}

This message was sent by Atlassian JIRA

View raw message