Setup keycloak sercurity for spring boot application

Vikas Verma

2018-11-30 (Last Modified: 2020-11-10)

Page content

Setup Realm and clients in keycloak

This blog is the second part of the series of security spring boot application with keycloak. In first part we install setup in keycloak with docker you can see first part here

Version:

Keycloak: 4.5.0.Final
Pre-requisites
Keycloak should be installed in the

Create realm A realm secures and manages security metadata for a set of users, applications, and registered oauth clients. Users can be created within a specific realm within the Administration console. Click on Add realm button

Input the realm name

Once realm created you will see this screen

Create Client We need 2 clients one is for bearer-only client for the application, and another one is public client to get the access token

Create Public client

Once public client is created you will see the below screen

Create Bearer only client and set the access type to beare-only

Add new Admin role for the application client

Create Admin Client

Create User Client

Create User for the application Create two user with role admin with and user.

Create admin user

Set password

Assign admin role to user vik-admin

Similarly create another user account vik-user with user role

Get access and refresh token

User below curl to get the access token

Response

In the next blog we will se how to secure spring boot application. You can see the blog here.

Hi, I am Vikas, I am certified AWS Solution architect(AWS-C02), and Professional Scrum Master(PSM), working as Senior Software Developer at Ascend Corp, Bangkok, Thailand with more than 10 years of experience IT, I like reading and writing blogs.#java #PSM #kotlin #scala #springboot #reactiveProgramming, #functionalProgramming