home.social

#keycloak — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #keycloak, aggregated by home.social.

  1. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ...
    Continued 👉 #opensource #selfhosted #reverseproxy #openjdk #letsencrypt #identitymanagement #selfhosting

    🚀 How to Deploy Keycloak on Ub...

  2. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ...
    Continued 👉 #opensource #selfhosted #reverseproxy #openjdk #letsencrypt #identitymanagement #selfhosting

    🚀 How to Deploy Keycloak on Ub...

  3. Von 2005 bis 2011 habe ich bei Microsoft mitgeholfen, den Käfig zu bauen.

    Nicht die Produkte. Die Wörter.

    „Tenant". „App-Registrierung". „Verzeichnisrolle." Vokabular war dort nie ein Nebenprodukt, es war Strategie. Wer die Begriffe setzt, mit denen eine Branche denkt, muss seine Produkte nicht mehr verteidigen, die Konkurrenz muss in einer Fremdsprache antworten. Der MCSE war kein Wissensnachweis, er war ein Sprachkurs mit Urkunde. Heute heißt er SC-300 und tut exakt dasselbe.

    Es funktioniert bis heute. Es funktionierte sogar bei mir.
    Letzten Samstag saß ich vor Keycloak für die Isar Open Source Community und verstand kein Wort. Realm? Client? Protocol Mapper? Zwei Stunden später fiel der Groschen, und er fiel unangenehm laut:

    Ich kannte das alles. Seit zwanzig Jahren. Nur unter anderen Namen.
    Ein Realm ist ein Tenant. Ein Client ist eine App-Registrierung. Rollen sind Rollen. Claims sind Claims.

    Deshalb ist „der Wechsel weg von Entra ist zu komplex" keine Analyse. Es ist eine Ausrede, die sich als Sachverstand tarnt. Es fehlt kein Know-how. Es fehlen zwei Seiten Übersetzung.
    Ein Käfig aus Wörtern hält nur so lange, wie man das Wörterbuch nicht liest.

    Der neue Panolin:
    https://www.pandolin.io/keycloak-entra-woerterbuch/

    #Keycloak #EntraID #DigitaleSouveränität #OpenSource #SelfHosting #FOSS #Linux #Fediverse

  4. Von 2005 bis 2011 habe ich bei Microsoft mitgeholfen, den Käfig zu bauen.

    Nicht die Produkte. Die Wörter.

    „Tenant". „App-Registrierung". „Verzeichnisrolle." Vokabular war dort nie ein Nebenprodukt, es war Strategie. Wer die Begriffe setzt, mit denen eine Branche denkt, muss seine Produkte nicht mehr verteidigen, die Konkurrenz muss in einer Fremdsprache antworten. Der MCSE war kein Wissensnachweis, er war ein Sprachkurs mit Urkunde. Heute heißt er SC-300 und tut exakt dasselbe.

    Es funktioniert bis heute. Es funktionierte sogar bei mir.
    Letzten Samstag saß ich vor Keycloak für die Isar Open Source Community und verstand kein Wort. Realm? Client? Protocol Mapper? Zwei Stunden später fiel der Groschen, und er fiel unangenehm laut:

    Ich kannte das alles. Seit zwanzig Jahren. Nur unter anderen Namen.
    Ein Realm ist ein Tenant. Ein Client ist eine App-Registrierung. Rollen sind Rollen. Claims sind Claims.

    Deshalb ist „der Wechsel weg von Entra ist zu komplex" keine Analyse. Es ist eine Ausrede, die sich als Sachverstand tarnt. Es fehlt kein Know-how. Es fehlen zwei Seiten Übersetzung.
    Ein Käfig aus Wörtern hält nur so lange, wie man das Wörterbuch nicht liest.

    Der neue Panolin:
    https://www.pandolin.io/keycloak-entra-woerterbuch/

    #Keycloak #EntraID #DigitaleSouveränität #OpenSource #SelfHosting #FOSS

  5. I love it when an #update to my #selfhost environment is a complete non-event. Upgraded my #Keycloak to the latest 26.7.0 today and it took just a few moments and had no issues! #homelab #selfhosted

  6. I love it when an #update to my #selfhost environment is a complete non-event. Upgraded my #Keycloak to the latest 26.7.0 today and it took just a few moments and had no issues! #homelab #selfhosted

  7. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #selfhosting #letsencrypt #openjdk #identitymanagement #selfhosted #reverseproxy #opensource

  8. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #selfhosting #letsencrypt #openjdk #identitymanagement #selfhosted #reverseproxy #opensource

  9. Unterwegs zum Java Forum Stuttgart! Kommt mich dort gerne am Stand des besuchen und informiert euch über die JUGs in 🇩🇪 🇦🇹 🇨🇭 und welche tollen Vorteile ihr von einer Mitgliedschaft habt, zum Beispiel mit unserer eigenen Infrastruktur wie , , , , , , , und mehr!

  10. Unterwegs zum Java Forum Stuttgart! Kommt mich dort gerne am Stand des #iJUG besuchen und informiert euch über die JUGs in 🇩🇪 🇦🇹 🇨🇭 und welche tollen Vorteile ihr von einer Mitgliedschaft habt, zum Beispiel #Digitale #Unabhängigkeit mit unserer eigenen Infrastruktur wie #Nextcloud, #Mastodon, #Matrix, #Jitsi, #Mobilizon, #Forgejo, #Keycloak, und mehr!

    #Java #jfs #jfs2026

  11. Morgen geht sie los: die "IT-Tagung 2026".
    Veranstalter: Diakonisches Werk Traunstein e.V. · IT-Tagung 2026 in Kooperation mit Diakonisches Werk Bayern e.V. 👇
    it-gemeinsam.de/

    Unsere Vorbereitungen sind abgeschlossen: FOSC IT GmbH - Full Open Source Consulting. Wir berichten über Datensouveränität, Datenhoheit, Software wie Grommunio, Nextcloud, Keycloak/SSO u.v.m..

    #diakonie #Nextcloud #grommunio #keycloak

  12. Morgen geht sie los: die "IT-Tagung 2026".
    Veranstalter: Diakonisches Werk Traunstein e.V. · IT-Tagung 2026 in Kooperation mit Diakonisches Werk Bayern e.V. 👇
    it-gemeinsam.de/

    Unsere Vorbereitungen sind abgeschlossen: FOSC IT GmbH - Full Open Source Consulting. Wir berichten über Datensouveränität, Datenhoheit, Software wie Grommunio, Nextcloud, Keycloak/SSO u.v.m..

    #diakonie #Nextcloud #grommunio #keycloak

  13. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #reverseproxy #identitymanagement #opensource #letsencrypt #selfhosted #openjdk #selfhosting

  14. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ...
    Continued 👉 #letsencrypt #reverseproxy #opensource #selfhosting #identitymanagement #openjdk #selfhosted

    🚀 How to Deploy Keycloak on Ub...

  15. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ...
    Continued 👉 #letsencrypt #reverseproxy #opensource #selfhosting #identitymanagement #openjdk #selfhosted

    🚀 How to Deploy Keycloak on Ub...

  16. CVE-2026-14781 (MEDIUM): Red Hat Build of Keycloak flaw in OIDC broker email_verified claim sync. If trustEmail=true & userinfo enabled, attacker can mark emails as verified. Review config & monitor fixes. radar.offseq.com/threat/cve-20 #OffSeq #Keycloak #Vuln #IAM

  17. Hab halt deren compose files in mein bestehendes Setup adaptiert. Eine Unzahl von ENB-Variablen deren Default direkt im Compose-File definiert sind, container Namen die in anderen Konfigurationen gesucht/ersetzt werden müssen, wenn man sie ändert.

    Und dann bin ich mir immer noch unsicher, brauch ich jetzt nen #Keycloak + Datenbank? 🤨
    Und den #LDAP? 🤔
    Oder was davon ist für ein Prod-Setup mit ner Handvoll Nutzer optional? 😵‍💫

    #OpenCloud #DockerCompose #SelfHosting

  18. Hab halt deren compose files in mein bestehendes Setup adaptiert. Eine Unzahl von ENB-Variablen deren Default direkt im Compose-File definiert sind, container Namen die in anderen Konfigurationen gesucht/ersetzt werden müssen, wenn man sie ändert.

    Und dann bin ich mir immer noch unsicher, brauch ich jetzt nen #Keycloak + Datenbank? 🤨
    Und den #LDAP? 🤔
    Oder was davon ist für ein Prod-Setup mit ner Handvoll Nutzer optional? 😵‍💫

    #OpenCloud #DockerCompose #SelfHosting

  19. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ...
    Continued 👉 #letsencrypt #identitymanagement #selfhosted #reverseproxy #openjdk #selfhosting #opensource

    🚀 How to Deploy Keycloak on Ub...

  20. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ...
    Continued 👉 #letsencrypt #identitymanagement #selfhosted #reverseproxy #openjdk #selfhosting #opensource

    🚀 How to Deploy Keycloak on Ub...

  21. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #selfhosted #identitymanagement #openjdk #opensource #reverseproxy #letsencrypt #selfhosting

  22. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #selfhosted #identitymanagement #openjdk #opensource #reverseproxy #letsencrypt #selfhosting

  23. Nice, that was easy. #Vaultwarden single sign on with #KeyCloak has been successfully configured.

  24. Nice, that was easy. #Vaultwarden single sign on with #KeyCloak has been successfully configured.

  25. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #reverseproxy #selfhosting #letsencrypt #opensource #selfhosted #identitymanagement #openjdk

  26. RT @[email protected]
    #Keycloak pwnage, all public.
    1: CVE-2026-4282 forges admin tokens unauth
    2: view-clients leaks every client secret, all versions, open #49220 (PoC: tinyurl.com/kmkz2)
    3: restart revives rotated refresh tokens, CVE-2026-9802

    Not every vuln has a CVE
    x.com/i/status/206...

    Exploits/2026/KeyCloak-49220-s...

  27. RT @[email protected]
    #Keycloak pwnage, all public.
    1: CVE-2026-4282 forges admin tokens unauth
    2: view-clients leaks every client secret, all versions, open #49220 (PoC: tinyurl.com/kmkz2)
    3: restart revives rotated refresh tokens, CVE-2026-9802

    Not every vuln has a CVE
    x.com/i/status/206968547574122

  28. RT @[email protected]
    #Keycloak pwnage, all public.
    1: CVE-2026-4282 forges admin tokens unauth
    2: view-clients leaks every client secret, all versions, open #49220 (PoC: tinyurl.com/kmkz2)
    3: restart revives rotated refresh tokens, CVE-2026-9802

    Not every vuln has a CVE
    x.com/i/status/206968547574122

  29. Anyone got a few minutes to review a blog post about using Keycloak to assume an AWS role via OIDC? Will credit you of course

    #Keycloak

  30. Anyone got a few minutes to review a blog post about using Keycloak to assume an AWS role via OIDC? Will credit you of course

    #Keycloak

  31. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #letsencrypt #selfhosting #opensource #openjdk #identitymanagement #reverseproxy #selfhosted

  32. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide) Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ... Continued 👉 #opensource #openjdk #selfhosted #letsencrypt #selfhosting #identitymanagement #reverseproxy

    🚀 How to Deploy Keycloak on Ub...

  33. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide) Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak ... Continued 👉 #opensource #openjdk #selfhosted #letsencrypt #selfhosting #identitymanagement #reverseproxy

    🚀 How to Deploy Keycloak on Ub...

  34. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #reverseproxy #selfhosting #selfhosted #identitymanagement #opensource #openjdk #letsencrypt

  35. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #reverseproxy #selfhosting #selfhosted #identitymanagement #opensource #openjdk #letsencrypt

  36. @bert_hubert I'm the last owl to take the side of big tech, but just saying, have you ever personally tried integrating oauth2/webauthn/OIDC/SSO into various #OpenSource web services? No? I want to wish you all the best of luck with that, as you roll out your enterprise-scale OpenSource deployments.

    I think there's good reason all these big organizations with valiant intentions of escaping big tech, end up crawling back to big tech. The OpenSource SSO offerings leave something to be desired. Where is the realistic competitor to #Microsoft Entra? Would that be #KeyCloak? #Authelia?

    It's much harder than you think.

  37. @bert_hubert I'm the last owl to take the side of big tech, but just saying, have you ever personally tried integrating oauth2/webauthn/OIDC/SSO into various #OpenSource web services? No? I want to wish you all the best of luck with that, as you roll out your enterprise-scale OpenSource deployments.

    I think there's good reason all these big organizations with valiant intentions of escaping big tech, end up crawling back to big tech. The OpenSource SSO offerings leave something to be desired. Where is the realistic competitor to #Microsoft Entra? Would that be #KeyCloak? #Authelia?

    It's much harder than you think.

  38. WHERE OTHERS LOSE CONTROL – WE STAY IN THE LOOP.

    At Infinito.Nexus, we believe that AI should never replace human judgment. We are the captains. AI is our navigator. While others hand over responsibility to black-box systems, we stay in control. We design the architecture, review the code, verify every deployment, and make the decisions that shape the future of the systems we build. AI is one of the most powerful tools ever created. But it remains a tool. We are the engineers, architects, and craftsmen who use it to build sovereign digital infrastructure faster, more reliably, and at a scale that was impossible only a few years ago. […]

    blog.infinito.nexus/blog/2026/

  39. WHERE OTHERS LOSE CONTROL – WE STAY IN THE LOOP.

    At Infinito.Nexus, we believe that AI should never replace human judgment. We are the captains. AI is our navigator. While others hand over responsibility to black-box systems, we stay in control. We design the architecture, review the code, verify every deployment, and make the decisions that shape the future of the systems we build. AI is one of the most powerful tools ever created. But it remains a tool. We are the engineers, architects, and craftsmen who use it to build sovereign digital infrastructure faster, more reliably, and at a scale that was impossible only a few years ago. […]

    blog.infinito.nexus/blog/2026/

  40. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #opensource #reverseproxy #selfhosting #letsencrypt #openjdk #selfhosted #identitymanagement

  41. 🚀 How to Deploy #Keycloak on #Ubuntu #VPS (5 Minute Quick-Start Guide)

    Here’s a clear and detailed how-to guide for how to deploy Keycloak on Ubuntu VPS. This guide uses Keycloak in standalone mode with #PostgreSQL as the database and #NGINX as a reverse proxy with SSL.
    What is Keycloak?
    Keycloak is an open-source identity and access management (IAM) ...
    Continued 👉 blog.radwebhosting.com/deploy- #letsencrypt #reverseproxy #selfhosted #selfhosting #identitymanagement #opensource #openjdk

  42. After trying #Keycloak for a while - trying to integrate it with ForgeJo for Single-Sign-On (#SSO), I wasn't really satisfied with Keycloak. Keycloak's error messages were too unhelpful. The documentation, too nebulous. I lurked in their forums a bit, but didn't really want to use Slack as some sort of depended-upon service. Whatever the Keycloak error messages said, the eventual solutions usually ended up being so disconnected with the error message, that it dawned on me that the Error messages were effectively "Red Herrings" - served only to throw me off the trail.

    Keycloak had a vibe to it that I'd describe as "Enterprise Bozak". It had the *look* of professionalism - making a solid effort to *appear* attractive to higher-up management types - but it didn't really *deliver* the helpfulness I was expecting, to actually overcome technical hurdles encountered. I've set Keycloak aside for now, and I'm trying out #Authelia instead, with an LLDAP backend. They seem easier to work with, as the error messages were good so far: had more of a technical helpfulness. After several hours of tinkering, I've set up my first LLDAP/Authelia users, including registering a passkey. I'll next see if I can integrate the Authelia SSO to #ForgeJo.

    #infosec #OpenSource