Keypress - Keycloak with Express.
This is a very experimental sample application to show how you can use Keycloak with Node.js/Express to provide Access Control in your Application. It has 2 main feature areas:
- Auth/Access Control on Express routes using the Keycloak Node.js Adapter.
- Server Administation using Node.js with the Keycloak Admin Client.
Technologies:
- Node/Express
- keycloak-connect
- keycloak-admin-client
- express-session
- Pug
- Bootstrap
- Bluebird
Currently the following UI functionality is implemented:
Users
- Create
- Read
- Delete
Roles
- Create
- Read
- Delete
Groups
- Create
- Read
- Delete
Access Control
Access control for users with the Realm admin Role on the following routes:
- /users
- /groups
- /roles
You must have a running Keycloak instance.
Clone this repository. Run:
npm install
You must then login to Keycloak and Add the Provided Realm and Users.
- Under the Realms section in Keycloak, add a new Realm with the Import option.
- Import the
keypress-realm.jsonfile located in the/keycloakfolder. - Once complete, visit the newly created realm and click the 'Import' button at the bottom left of the sidebar. You will import the users here. Choose the
keypress-users-0.jsonfile located in the/keycloakfolder.
Then run the keypress application itself:
npm start
Visit http://localhost:3000/ in your browser.
The keypress-admin users password is admin.
How are the Roles, Groups and Users Configured?
- TODO - Create a table with their configurations. Information can be seen in Keycloak anyway.
- Open an Issue in GitHub and add a category label.
For a bearer example, checkout the bearer_example branch that works with the Keyonic-v2 bearer_example branch. Also ensure that the following is set in your realm config "bearerOnly": true or simply set the client to be bearer-only in the admin console in Keycloak.