This post is a continuation of Part 1: Simplify Security in Kubernetes with Keycloak and Dapr: A Comprehensive Integration Guide. This part will explore another Oauth2 Client Credentials middleware component of Dapr for the same step we had in Part 1. We will only replace the middleware.http.oauth2 with middleware.http.oauth2clientcredentials We…

In this blog post, we will explore the seamless integration of Keycloak and Dapr. We will showcase how it simplifies your application's identity and access management in Kubernetes. Understanding Dapr and Keycloak: Dapr, or Distributed Application Runtime, provides a portable, event-driven runtime for developing microservices-based applications. By abstracting distributed systems complexities, developers can concentrate…

SpiceDb is an open source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. It can handle complex data models, and act as a centralized service that stores authorization data in one place. SpiceDB supports a variety of storage engines, including Postgresql. …

This post will go through how to quickly set up a self-signed TLS certificate for running an instance of Keycloak locally. Only for local development purposes. Setup Openssl Keycloak(Quarkus) distribution Generate the SSL certificate (self-signed certificate) in your preferred terminal openssl req -newkey rsa:2048 -nodes \ -keyout keycloak-server.key.pem -x509 -days 3650 -out keycloak-server.crt.pem

In this post, you will learn about the dynamic client registration (clients-registration) API in Keycloak. It's a common use case to create clients in an automated way. Dynamic registration in Keycloak can be done in two ways: Using Admin API Client Registration API Admin API allows you to register clients…

In this post, you will get insights into using jq tool. For parsing json data & retrieve specific fields. Which can be further processed or used for any other operations. To know more about jq follow the link Objective: Parse the json from a file or end-point using `jq` and…

Error return by the Openshift cluster when using the oc tool to retrieve secrets with a key containing a dash(“-”) in it. Solution Let’s say the secret is defined in follow namespace & namespace: test name of the secret: `config-parameters` Secret kind: Secret apiVersion: v1 metadata: name: config-parameters namespace: test data: test-id: dGVzdC12YWx1ZQ== type: Opaque Let’s try to retrieve the secret “config-parameters” with the key:”test-id”

Exception when you are trying to deploy a Kafka Producer/Consumer application as a jar. Problem I encountered this error while I was writing: Keycloak: Event Listener SPI & Publish to Kafka Example code Producer.java#L41 Here I defined the StringSerialized.class as a property for the Kafka Producer configuration. This application is deployed…

In this post, we will see how to secure JupyterLab & manage access for the JupyterLab notebook using Keycloak. I will be setting up the JupyterLab in the local system & require config changes for running it locally which will differ from the production setup. If you are not familiar…